Platform Security Engineer

The ASUS Robotics & AI Center is seeking a Platform Security Engineer to join our global research and development team. This role is central to establishing and maintaining the security posture of our cloud-based platform, spanning application hardening, infrastructure security, and the practices that keep our systems secure as they scale.We are looking for an experienced engineer with deep expertise in application and cloud security, a proactive mindset for identifying and mitigating risk, and the ability to work effectively across a collaborative, multidisciplinary engineering team. The ideal candidate is a seasoned, self-directed professional who can own security architecture end-to-end while guiding others toward secure development practices.Own application and infrastructure security across the platform, from production launch through long-term scalingHarden authentication (OAuth/session handling) and API authorization patterns, including multi-tenant access controlConfigure and maintain IAM policies, service accounts, and least-privilege access controls across cloud infrastructureSecure data flows including file uploads, signed URLs, database access, and secrets managementSet up and maintain security monitoring, logging, and alerting systemsBuild and maintain security tooling integrated into CI/CD pipelines, including SAST, DAST, and dependency scanningPerform regular security assessments, dependency audits, and penetration testingRespond to security incidents and conduct root cause analysisEvolve security architecture as the product and team scaleGuide the engineering team on secure development practices and document security controls and incident response proceduresRequirementsBachelor's degree or higher in computer science, information security, or a related field7+ years of experience in application or infrastructure security rolesProven experience securing production web applications, preferably in Node.js/Next.js environmentsDeep familiarity with cloud security on GCP or equivalent platforms, including IAM, VPC, IAP, Secret Manager, and Cloud ArmorStrong understanding of OAuth, session security, and multi-tenant authorization patternsExperience with security scanning tools (SAST, DAST, dependency scanning) and integrating them into CI/CD workflowsExperience with Terraform security hardeningStrong verbal and written communication skills, including the ability to document security controls and guide non-security engineersPenetration testing experience is a plus