Senior Security Engineer - Database Security, Trust Engineering

About the Role

As a Security Software Engineer, your role involves architecting, designing, and implementing end-to-end security controls to impact the global user base. A key focus is on developing automated, scalable security solutions to enhance efficiency and protect Roku. This position requires expertise in creating and extending security automation tools, including detection and process automation. 

What you will be doing

Designing security solutions with an automated and scalable approach (think webhooks and Docker).
Act as DB SME for the trust organization, interact with internal Roku teams to advise them on security best practices, DB architectures, and assist in incident response and other security investigations.
Developing (or extending OSS) security automation tooling. This can range from detection tooling to security process automation, or a fuzzing infrastructure to find bugs.
End-to-End Security Solutions: Architect, design, and implement security controls. Your work will directly impact our global user base.
Automation Focus: Develop automated, scalable security solutions. Efficiency is key.
Tooling Expertise: Extend or create security automation tools. Detection, process automation, fuzzing—you’ll own it.

We are excited if you have

Programming/scripting skills: Go or Python
Proven track record of deploying and operating Kubernetes and containers in production. 
Experience building, managing, and debugging CI/CD pipelines. 
Experience securely running and operating web applications, web services, and service-oriented architecture in production environments.
Extensive experience with DBA skills in PostgreSQL and MySQL, with expertise in securing, hardening, authentication, authorization, and auditing of databases.
Proficiency in understanding authentication, authorization, and cryptography, with familiarity around modern security standards and best practices.
Experience with Infrastructure-as-Code using Terraform
Experience deploying and operating infrastructure in at least one public cloud provider (AWS, GCP, or Azure)
Passion for cybersecurity with a effective and passionate drive to protect digital assets.

 #L1-GL1

Benefits

Roku is committed to offering a diverse range of benefits as part of our compensation package to support our employees and their families. Our comprehensive benefits include global access to mental health and financial wellness support and resources. Local benefits include statutory and voluntary benefits which may include healthcare (medical, dental, and vision), life, accident, disability, commuter, and retirement options (401(k)/pension). Our employees can take time off work for vacation and other personal reasons to balance their evolving work and life needs. It's important to note that not every benefit is available in all locations or for every role. For details specific to your location, please consult with your recruiter.

The Roku Culture

Roku is a great place for people who want to work in a fast-paced environment where everyone is focused on the company's success rather than their own. We try to surround ourselves with people who are great at their jobs, who are easy to work with, and who keep their egos in check. We appreciate a sense of humor. We believe a fewer number of very talented folks can do more for less cost than a larger number of less talented teams. We're independent thinkers with big ideas who act boldly, move fast and accomplish extraordinary things through collaboration and trust. In short, at Roku you'll be part of a company that's changing how the world watches TV. 

We have a unique culture that we are proud of. We think of ourselves primarily as problem-solvers, which itself is a two-part idea. We come up with the solution, but the solution isn't real until it is built and delivered to the customer. That penchant for action gives us a pragmatic approach to innovation, one that has served us well since 2002.