About the role
Role Overview
Beghou is seeking a Platform Security Engineer to help strengthen and scale security practices across our technology platforms, with a particular focus on our proprietary SaaS product offerings, our data management platform offerings, cloud infrastructure, and AI-assisted engineering.
This role will work across software engineering, data engineering, product, delivery operations, IT, governance, and leadership to improve existing security patterns, expand automation and visibility, and help teams adopt secure-by-design ways of working. The goal is to evolve and centralize our security practices and governance, building on controls in place, including GitHub Advanced Security, to make them more consistent, actionable, and applicable across a broader set of workflows.
What You'll Deliver
-
Improve and extend security patterns across Beghou technology platforms, with focus on our software and data management offerings
-
Build on existing controls such as GitHub Advanced Security to improve automation, transparency, and coverage across engineering workflows
-
Support secure software delivery practices across code, pull requests, secret management, dependency management, infrastructure-as-code, and CI/CD
-
Help define and evolve practical guardrails for AI-assisted and agentic coding, including secure usage patterns and review expectations
-
Support tighter scanning baselines and continuous assessment across AWS, Azure, Databricks, Entra ID, and related platform infrastructure
-
Partner on architecture and design reviews for new platform capabilities and high-impact changes
-
Collaborate with IT and governance teams on endpoint, identity, compliance, and audit-related security practices
-
Help develop security documentation, implementation guidance, training materials, and reporting metrics
What You'll Bring
Qualifications
-
6+ years of experience in security engineering, application security, cloud security, platform security, or a related area
-
Experience with modern software delivery environments, including source control, CI/CD, dependency management, and cloud deployment practices
-
Experience with security scanning and related controls such as code scanning, dependency scanning, secret scanning, or infrastructure scanning
-
Working knowledge of AWS and Azure security concepts
-
Strong collaboration and communication skills across technical and non-technical stakeholders
Preferred
-
Experience with GitHub Advanced Security, CodeQL, or similar tooling
-
Experience with Databricks or data platform security
-
Experience with Entra ID, Azure security services, or AWS security tooling
-
Familiarity with NIST, SOC 2, ISO 27001, or related frameworks
-
Experience supporting audits, remediation tracking, or security documentation