Staff Security Engineer II

We’re not just building better tech. We’re rewriting how data moves and what the world can do with it. With Confluent, data doesn’t sit still. Our platform puts information in motion, streaming in near real-time so companies can react faster, build smarter, and deliver experiences as dynamic as the world around them.

It takes a certain kind of person to join this team. Those who ask hard questions, give honest feedback, and show up for each other. No egos, no solo acts. Just smart, curious humans pushing toward something bigger, together.

One Confluent. One Team. One Data Streaming Platform.

ABOUT THE ROLE

As a Staff Application Security Engineer at Confluent, you will join a team of security architects and engineers responsible for shaping and advancing the application security strategy across our on-premises products and cloud services. In this role, you will go beyond implementation to define the long-term security posture of our ecosystem, spanning high-scale distributed systems, on-prem deployments, and globally operated cloud platforms.

You will lead the design and evolution of application security architecture, ensuring security is embedded throughout the product lifecycle—from early design decisions to cloud deployment and ongoing operations. Acting as a strategic partner to Engineering and Product leadership, you will influence architectural direction and proactively mitigate systemic and emerging security risks.

This role plays a key part in building and sustaining a strong security culture across Engineering, Product, and the broader organization. You will architect and oversee security automation and tooling that scales security operations and enables consistent, high-quality outcomes. The ideal candidate brings deep technical expertise and sound security judgment, with a proven ability to eliminate entire classes of vulnerabilities through architecture, automation, and cross-functional leadership.

WHAT YOU WILL DO

• Partner closely with Engineering, Product, and Platform teams to identify security risks early, influence architectural decisions, and drive adoption of secure-by-design practices across the organization.
• Define and standardize threat modeling frameworks and security design standards, and lead security design reviews for complex, distributed systems, providing actionable architectural guidance to engineers and product managers.
• Serve as the subject matter expert (SME) for product security implementation reviews, overseeing security code reviews and API security testing while providing definitive remediation guidance.
• Architect and drive the roadmap for security automation, building scalable software security tooling to transform product security operations and vulnerability management practices.
• Design and lead the deployment of automation and orchestration frameworks that integrate security seamlessly into the cloud-native deployment pipeline.
• Proactively identify new vulnerability classes, lead research initiatives and orchestrate complex table-top exercises to keep the organization ahead of the evolving threat landscape.
• Strategically identify and deploy advanced technology controls to maximize observability and harden key attack surfaces across the ecosystem.

WHAT YOU WILL BRING

• 10–12 years of hands-on Application Security experience, who can drive measurable security improvements across large-scale, distributed systems and global engineering organizations.
• Comprehensive knowledge of security fundamentals as applied to modern web applications and cloud-native platforms including secure software design and architecture, secure coding practices, common vulnerability classes.
• Ability to partner as a trusted peer with Engineering and Product leadership to embed security into the core architecture of the organization.
• Ability to lead technical investigation and response to application security incidents while driving preventive improvements through architecture and automation.
• Proven experience evolving the software development lifecycle to embed security by default, from securing CI/CD pipelines and build systems to implementing automated security guardrails in cloud-native deployment workflows. Passionate about applying AI and LLMs to automate complex security workflows, reduce manual toil, and drive measurable improvements in security outcomes.
• Experience in Go, Python, or Java, with the ability to design and build scalable security automation frameworks.
• Experience in leading cross-functional initiatives in distributed environments, translating security requirements into clear, executable technical roadmaps.
• A data-driven decision-maker who can balance security requirements with business velocity and engineering trade-offs to deliver outcomes.
• Ability to raise the organization’s security bar through architectural reviews, advanced technical guidance, and the development of engineers across all levels.

READY TO BUILD WHAT'S NEXT? LET’S GET IN MOTION.

COME AS YOU ARE

Belonging isn’t a perk here. It’s the baseline. We work across time zones and backgrounds, knowing the best ideas come from different perspectives. And we make space for everyone to lead, grow, and challenge what’s possible.

We’re proud to be an equal opportunity workplace. Employment decisions are based on job-related criteria, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by law.

PRIVACY STATEMENT

Confluent is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organization. By proceeding with this application, you understand that Confluent will share your personal information with other IBM affiliates involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here http://ibm.com/careers/us-en/privacy-policy/.