Apply on Employer Site

Weedmaps · 1 day ago

Security Engineer (Remote)

United States

Full-time

Remote

Senior Level

$150K/yr - $169K/yr

5+ years exp

Weedmaps is a global leader in the cannabis industry, seeking a hands-on Security Engineer to enhance their security organization. The role focuses on automation and vulnerability management, ensuring the security readiness of infrastructure, internal systems, and the development lifecycle.

AdvertisingAppsCannabisCollaborative ConsumptionInformation TechnologyInternetMedia and Entertainment

H1B Sponsor Likely

Responsibilities

Design, build, and maintain security tools, scripts, and automations to enhance the effectiveness and efficiency of security workflows

Partner with Engineering teams to manage and drive remediation of security vulnerabilities identified via internal and external sources

Evaluate and prioritize security risks based on industry standards (e.g., CVSS, CWE) and business context to ensure timely risk reduction

Recommend, implement, and optimize technical controls to effectively reduce organizational risk

Ensure security policies and standards are being properly applied throughout the entire organization

Manage and optimize a suite of security tools, including SOAR, EDR, DLP, and other solutions

Author Agile stories, estimate story points, assist with sprint planning, and retrospectives

Maintain and create secure development best practices for our engineering teams

Identify risks in software architecture and internal development processes

Participate in a rotating on-call schedule for incident monitoring and triaging of security-related events

Qualification

Information SecurityVulnerability ManagementCloud (AWS)CI/CD PipelinesSOAR/SIEM PlatformsAgile MethodologiesPythonInfrastructure-as-CodeSecurity StandardsEffective Communication

Required

5+ years of experience in Information Security, DevSecOps, or a combined background in DevOps/Software Engineering, with a focus on vulnerability management and technical security assessments

Deep technical understanding of modern systems architecture, including Cloud (AWS), containers/orchestration (Kubernetes, Docker), and serverless workflows

Experience with vulnerability analysis, including understanding CVEs, and identifying/remediating security issues within application code

Proficiency in a Git-based development environment, including workflows like CI/CD, PRs, and repository management

Experience integrating security tooling into CI/CD pipelines and using Agile/Lean methodologies with tools like JIRA/Confluence

Literacy in at least one modern programming or scripting language (e.g., Python, Ruby, Java, JavaScript)

Experience designing, building, or operating SOAR or SIEM platforms, and utilizing system metrics for security monitoring and alerting

Effective written and verbal communication skills, with a proven ability to collaborate and drive security initiatives across technical and non-technical teams

Preferred

Knowledge of security standards and compliance frameworks (e.g., PCI, SOC2, NIST 800-53)

2+ years working directly on a DevOps or DevSecOps team

Expertise in Infrastructure-as-Code (IaC), including using Terraform to manage and implement secure cloud architectures (AWS)

Experience building pipelines for Continuous Delivery and integrating SDLC security tooling and flexible automations

Advanced experience with security operations technologies, including SOAR/SIEM solutions, incident response, and root cause analysis

Ability to perform security troubleshooting in complex cloud and container environments

Relevant security certifications (CISSP, CCSP, GCIA, GCIH) are a plus

Proven ability to drive organizational change regarding security and a passion for innovative security projects

Comfortable working in a fast-paced, rapidly scaling, and complex product environment

Benefits

Physical Health (Medical, Dental & Vision)

100% employer-paid premium for employees

Up to 80% coverage for dependents

Company HSA contribution with the High Deductible Health Plan

401(k) Retirement Plan (employer will match contribution up to 3.5% of employee contribution)

Basic Life, Voluntary Life and AD&D Insurance options

Supplemental, voluntary benefits

Student Loan Repayment/529 Education Savings with a monthly company contribution

FSA (Medical, Dependent, Transit and Parking)

Voluntary Life and AD&D Insurance

Critical Illness Insurance

Accident Insurance

Short- and Long-term Disability Insurance

Pet Insurance

Identity theft protection

Legal access to a network of attorneys

PTO, paid sick leave, and company holidays (including a 2026 holiday shutdown)

Paid parental leave

Company

Weedmaps

Glassdoor2.3

Weedmaps is the world's first marijuana technology and media brand. It is a sub-organization of Weedmaps.

Founded in 2008

Irvine, California, USA

501-1000 employees

http://weedmaps.com

H1B Sponsorship

Weedmaps has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2022 (1)

2021 (4)

2020 (1)

Funding

Current Stage

Late Stage

Total Funding

unknown

2021-04-13Undisclosed

2018-08-15Undisclosed

2015-11-01Acquired

Leadership Team

Dimension Software

CoFounder / CTO

Duncan Grazier

Chief Technology Officer

Recent News

Law360

Weedmaps Accused Of Promoting Illegal Cannabis Cos.

2025-09-23

EIN Presswire

Latinas in Cannabis Summit Returns to Los Angeles for its 3rd Year

2025-09-02

Morningstar.com

Mr. Charlie’s and Weedmaps Drop the First Cannabis Culture Collectible in QSR History

2025-07-10

Company data provided by crunchbase