Lead Security Engineer

About Panorama:
Panorama Education is a fast-growing technology company partnering with K-12 school districts to help students succeed in the classroom and beyond. Today, 2,000 districts serving 15 million students across all 50 states rely on our secure, research-backed platform for AI, student support, and community voice and engagement. We also provide professional development and hands-on support to help schools to achieve their strategic goals and improve student outcomes. When you join Panorama, you become part of a mission-driven team making a real impact for students every day.

Panoramians can choose to work fully remote anywhere within the Continental United States.

About The Role:

At Panorama, everyone is a leader in securing student data as part of our values of inclusivity and student impact. As a Lead Security Engineer on Panorama’s Platform Security Team, you’ll be hands-on, working to design and build secure systems that protect student data. If you thrive in code, enjoy solving complex security problems through automation, and want to partner with engineers on cutting-edge projects, this role is for you.

Our team (typically five security engineers) operates with rotating ownership of major initiatives and collaborative risk prioritization. Your acumen, leadership, and communications will also influence the platform security program. In this role you will drive technical decisions, grow skills on the team, and shape strategy through mitigation proposals and an expectation of autonomy in security guidance to software and infrastructure teams, with support from hands-on security program leadership.

Responsibilities:

• Design, write, test, and deploy infrastructure-as-code to enforce security controls in AWS (e.g., Terraform, CDK).
• Develop internal tools and guardrails to support secure software development (e.g., linters, pre-commit hooks, GitHub Actions).
• Lead threat modeling and architecture reviews with engineers to proactively address risk at the design stage.
• Deploy effective systemic security controls in AWS and web applications, ranging from code and access management down to the network and asset configuration (e.g. encryption enhancements)
• Investigate and plan major projects on the platform security team – be the one that enables successful on-time delivery by seeing around corners and mapping out the important factors for key technical decisions
• Foster operational excellence through least privilege access, incident response drills, process improvement, and robust solutions for monitoring, auditing and alerting
• Keep confidentiality and “security by default” across Panorama’s platform, never putting developer ease or convenience over making a difference to the millions of students we serve
• Drive vulnerability remediation both directly and through internal and external partnerships
• Share your deep knowledge of security, technology, and best practices to support our policies, solve complex challenges, and help us consistently achieve our goals.
• Actively seek out and integrate the feedback from your teammates who have a diverse set of backgrounds and experiences so you can support inclusiveness, increase awareness, and build a better product

Our Ideal Candidate Has:

• Proficient in at least one programming language used in modern infrastructure or application development (e.g., Python, Ruby, Go, JavaScript).
• Experience implementing CI/CD pipeline security, infrastructure-as-code security, or secure SDLC practices.
• Hands-on experience with AWS security services (e.g., IAM, KMS, CloudTrail, GuardDuty).
• Track record of reducing risk through automation and code—not just policy.
• An inquisitive, proactive and collaborative mindset with strong attention to detail
• A track record of coordinating cross-functionally with teams of engineers, product, IT and GRC on high-impact projects
• Experience breaking down and shaping the scope of technical requirements of a series of several projects to help optimize for overall team delivery as well as safe releases and operations. 
• Outstanding problem-solving abilities, including through code, with examples of overcoming challenges from real world applications of security or risk management frameworks
• 7 years experience in software organizations, including 4 years specifically solving software security or cloud security challenges (security engineering, application security, identity & access management or similar)
• Experience supporting security compliance efforts (e.g., SOC2, ISO27001) through technical implementations.
• Active involvement in the information security community or a security certification (eg. Security+ or AWS Certified in Security) with examples of positive impact
• The salary range for this role is $159,000k - 212,000k/ Anually 
• The final salary offered will be based on several factors, including your overal experience and how the interviews go, but not limited to that. 

Our salary is just one component of Panorama’s competitive total rewards strategy that also includes annual bonuses or commission awards, equity awards, as well as other region-specific health and welfare benefits

#Li-Remote