Security Engineer

About Us: Trusted and loved by 25 million educators, students, and families worldwide, Seesaw is the only elementary learning experience platform, offering a suite of award-winning tools, resources, and curriculum for teachers to deliver joyful, inclusive instruction. Through interactive lessons, digital portfolios, and two-way communication features, Seesaw keeps everyone in the learning loop by providing continuous visibility into the student's learning experience to support and celebrate their learning. Our Mission: Seesaw’s mission is to provide every elementary student with joyful and connected learning experiences that lay the foundation for success in life. Your team: As Seesaw continues to grow, security has become a core operational dependency rather than a support function. The Security Engineer will help scale our security foundations by embedding security practices directly into our infrastructure and development workflows.This role bridges Engineering and Security: focusing on automation, enablement, and building the technical guardrails that let teams move quickly and safely. You’ll work closely with Engineering and IT teams to design and implement secure and observable systems in AWS, and our corporate tooling. The ideal candidate is a hands-on builder who enjoys making complex security processes simple and reliable through automation. Key Day-to-Day Responsibilities: Build and maintain automated security controls across AWS, CI/CD, and application infrastructure. Develop custom security tooling to automate manual processes. Work closely with Engineering and external bug bounty participants to mitigate vulnerabilities in the Seesaw Learning platform. Make improvements to the Seesaw Learning platform codebase to support secure-by-default development. Improve our infrastructure by aiding in the development of our Infrastructure-As-Code configurations. Partner with Engineering to integrate scanning, alerting, and compliance checks into daily development workflows to shift security left. Improve observability and detection through enhanced logging, alerting, and vulnerability pipelines. Projects the candidate will be working on (Top 3–5 bullet points): Transitioning all normal engineering workflows to Infrastructure-As-Code to minimize AWS Console usage. Improving vulnerability management processes across the application and infrastructure. Developing runbooks to document manual procedures and automating wherever possible. Deploying automated code scanning in GitHub Actions. Hardening AWS IAM roles and policies to enforce least privilege and support cross-environment isolation. Implementing monitoring and compliance automation using Troposphere, AWS CloudFormation, and DataDog. Must-Have Skills/Experience: 3+ years of experience in DevOps, Cloud Engineering, or Security Engineering roles, ideally within a small or fast-growing company. Backend web application development experience in Python or a similar language. Deep familiarity with AWS core services (IAM, CloudTrail, CloudFormation, ECS, Lambda, S3, KMS). Familiarity with application security and platform security best practices including frameworks such as OWASP. Experience building or maintaining infrastructure with infrastructure-as-code tooling (e.g. Troposphere, Terraform, CloudFormation, AWS CDK). Proficiency with CI/CD automation tools (GitHub Actions, GitLab CI, or similar). Strong time management and organizational skills; able to balance multiple priorities and projects effectively. Collaborative mindset and comfort working across distributed teams and time zones. Compensation Benefits: Our salary ranges are based on paying competitively for our size and industry. Salary is just one part of our total compensation package that includes equity, perks benefits, and development opportunities at Seesaw. Individual pay decisions are based on several factors, including qualifications for the role, experience level, skillset, geo ... (truncated, view full listing at source)