Security Engineering & Operations Lead - Remote (Portugal) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Lifebit · 4 days ago

Security Engineering & Operations Lead - Remote (Portugal)

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
date5+ years exp

Lifebit is a company focused on harnessing connected data for precision medicine. They are seeking a Security Engineering & Operations Lead to own and run security across their cloud infrastructure and operational processes, ensuring compliance and security standards are met while driving improvements in security operations.

BiotechnologyArtificial Intelligence (AI)Cloud ComputingSoftwarePharmaceuticalLife ScienceBioinformaticsCloud Data ServicesGeneticsMachine Learning

Responsibilities

Design, implement, and operate cloud security controls across AWS using Infrastructure-as-Code (Terraform, Pulumi, or equivalent)
Personally review and contribute to Terraform, Kubernetes, and CI/CD configurations with a security lens
Secure AWS IAM, networking (VPCs, private connectivity, service-to-service auth), and cloud-native services
Define and enforce Kubernetes security standards (RBAC, isolation, secrets management, runtime security)
Perform hands-on threat modelling of platform components, data flows, and federated execution patterns
Own vulnerability management end-to-end: detection, prioritization, remediation, and verification
Design and operate security monitoring, logging, and alerting (SIEM, cloud-native tooling)
Act as incident commander for security incidents, coordinating investigation, containment, remediation, and post-incident reviews
Build and maintain practical incident response playbooks and on-call processes
Continuously harden systems through patching, configuration management, and proactive risk reduction
Establish operating cadence and governance for SecOps (triage, prioritisation, SLAs, change control, post-incident reviews) and drive follow-through to closure
Own the backlog and roadmap for detection & response: decide what gets built next, why, and how success will be measured
Partner with Compliance and Legal to support ISO 27001, SOC 2, GDPR, HIPAA, and FedRAMP requirements
Translate compliance controls into concrete technical implementations rather than policies alone
Provide evidence and technical explanations during audits based on real system behavior
Maintain risk assessments that are grounded in architecture, threat models, and operational reality
Ensure security operations align with regulatory expectations without introducing unnecessary bureaucracy
Translate risk into clear, prioritised engineering work: write requirements, unblock execution, and communicate trade-offs to stakeholders
Create and maintain a pragmatic control framework that scales (policies, standards, exceptions, and evidence collection), with clear owners and timelines
Set security standards and guardrails that engineering teams can realistically adopt
Mentor engineers on secure design, cloud security, incident response, and vulnerability management
Drive a culture of shared ownership for security across engineering
Communicate clearly with both technical teams and executive stakeholders during incidents and risk discussions
Influence senior engineering and product stakeholders through crisp recommendations, data, and risk-based narratives—often without direct authority
Be the security 'single-threaded owner' for operational readiness: ensure teams know what 'good' looks like and that it’s consistently met
Automate security monitoring, detection, and remediation wherever possible
Identify systemic risks and eliminate them at the architecture or platform level
Stay current on emerging threats in cloud-native, data, and platform security
Design scalable, low-toil processes and automation that reduce noise and improve signal (alert quality, tuning, runbooks, metrics)
Continuously evaluate tooling and vendors; build business cases and implement improvements end-to-end (selection → rollout → adoption → measurement)

Qualification

Cloud Security (AWS)Security OperationsIncident ResponseVulnerability ManagementInfrastructure-as-CodeSIEM ToolsCompliance StandardsContainer SecurityRisk AssessmentTeam LeadershipCross-functional CollaborationCommunication Skills

Required

BSc in Network Engineering, Cybersecurity, Computer Science, or a related advanced technical field
5+ years of hands-on security experience in a product-based company (not purely consulting or audit)
Deep understanding of cloud environments (AWS, Azure, or GCP) and network security architectures
Demonstrated experience as the primary owner of a security operations function (building and running it), not just a contributor within a larger security org
Strong judgment and autonomy: able to make priority decisions under ambiguity and drive outcomes without 'waiting for direction.'
Hands-on experience with SIEM, IDS/IPS, firewalls, endpoint protection, and log aggregation systems
Strong background in incident response, risk assessment, and vulnerability management
Familiarity with containerized environments (Docker, Kubernetes) and secure DevOps practices
Proven ability to design and operate in highly regulated, compliance-driven environments
Track record of partnering with engineering to deliver measurable security improvements (MTTR, coverage, control effectiveness, audit readiness)

Preferred

MSc in Network Engineering, Cybersecurity, Computer Science, or a related advanced technical field
Experience managing global security operations in a cloud-first or federated data organization
2+ years of experience in a managerial position
Certifications such as CISSP, CISM, or CCSP
Experience working with privacy-preserving technologies and encrypted computation
Strong cross-functional collaboration skills, capable of influencing without direct authority
Excellent written and verbal communication skills across technical and executive levels

Benefits

Compensation: Your work is rewarded with a competitive salary and performance-based incentives.
Professional Development: You are granted an annual personal development budget of £1,000 and access to leading industry conferences, training, and certifications.
Flexible Working: Receive 21-25 days of annual leave and fully remote work to maintain a healthy work-life balance.
Diverse Team Culture: Join an international and diverse team passionate about transforming healthcare through data.
Deep Technology & Science: Get exposure to problems and applications in the cloud, data analysis, ML, life sciences, and big data fields.

Company

Lifebit

twittertwittertwitter
company-logo
Lifebit CloudOS is the intelligent genomics platform that is the industry standard for unified, secure research over distributed big data.
dateFounded in 2017
location
London, England, GBR
people-size51-200 employees
web-link
http://lifebit.ai

Funding

Current Stage
Growth Stage
Total Funding
$70.62M
Key Investors
Tiger Global ManagementIdinvest PartnersConnect Ventures,Pentech Ventures
2021-09-28Series B· $60M
2020-04-30Series A· $7.5M
2018-07-19Seed· $3M

Leadership Team

leader-logo
Maria Chatzou Dunford
Chief Executive Officer & Founder
linkedin
leader-logo
Pablo Prieto Barja
Founder & CTO
linkedin

Recent News

EIN Presswire
Lifebit AI-Automated Airlock Now Available on AWS Marketplace and Crown Commercial Services
2026-02-02
EIN Presswire
Lifebit Launches the World’s First Fully Agentic Federated Platform - Redefining Trusted Research Environments
2026-01-13
EIN Presswire
Lifebit Launches AI-Powered Federated Data Hubs for Secure Data Exploration
2025-12-15
Company data provided by crunchbase