What you'd actually do

Co-own and drive Atlas cloud security initiatives such as control plane hardening, cloud security baselines, identity and access patterns, customer account protections, and data-plane protections for multi-tenant environments

Perform and lead security reviews for Atlas features and platform changes in cloud environments, including architecture review, threat modeling, and targeted testing, with an emphasis on pragmatic, actionable guidance

Design and review cloud architectures across AWS, GCP, and Azure--covering networking, IAM, secrets management, and service-to-service access--and help define secure reference architectures that can be reused by Atlas teams

Embed security into platforms and guardrails by working with platform, SRE, and other security engineering teams to implement policies and automation (e.g., policy-as-code, secure defaults, pre-deployment checks) that make the secure path the easiest path for developers

Use CSPM, infrastructure vulnerability data, and IaC scanning to identify meaningful posture gaps in Atlas environments and drive concrete hardening work with clear ownership, coverage, and success metrics

Skills

Required

cloud security architecture
AWS
GCP
Azure
security architecture fundamentals
threat modeling
risk trade-offs
application security
data security
infrastructure security
code reasoning (Go, Java, or similar)
IaC (Terraform/CloudFormation)
CI/CD
security automation tooling (CSPM, IaC scanning, SAST, SCA)
security reviews
project leadership
written and verbal communication
ownership
collaboration
actionable feedback

Nice to have

security engineer for multi-tenant SaaS or cloud platform
data domain security
database domain security
infrastructure-as-a-service domain security
Atlas-like environments
control planes orchestrating resources across multiple cloud providers
isolation and blast-radius containment
improving signal quality and developer adoption of CSPM, vulnerability management, or IaC scanning
public contributions to security community (talks, tools, standards, publications)
mentoring other security engineers
bar-raiser in interviews

What the JD emphasized

7+ years of experience in application, product, and/or cloud security for large-scale, customer-facing systems, ideally in a multi-cloud or SaaS environment

Strong, hands-on experience with cloud security architecture on at least one major cloud provider (AWS, GCP, or Azure), with familiarity across

Solid security architecture fundamentals: able to design and review end-to-end systems, reason about threat models and risk trade-offs, and recommend appropriate controls across application, data, and infrastructure layers

Demonstrated experience leading security reviews and projects in partnership with engineering teams (e.g., threat modeling, design reviews, targeted testing) and turning findings into pragmatic, prioritized remediation work

MongoDB is seeking a Senior Product Security Engineer to drive cloud security initiatives for MongoDB Atlas and the cloud platforms that power it across AWS, GCP, and Azure. You’ll be a senior individual contributor in the MongoDB Product Security organization, a diverse team responsible for the security of all customer‑facing products, including Atlas, self‑managed/server, and a broad ecosystem of related services and tools.

Within Product Security, the Cloud Security team focuses specifically on Atlas control plane and data plane environments and the underlying cloud platforms, partnering closely with Atlas engineering, SRE, other security engineering teams, and global security operations to build and defend secure‑by‑default, large‑scale, multi‑tenant cloud services.

This role can be based in our Dublin office (hybrid working model) or remotely in Ireland.

Requirements

7+ years of experience in application, product, and/or cloud security for large-scale, customer-facing systems, ideally in a multi-cloud or SaaS environment
Strong, hands-on experience with cloud security architecture on at least one major cloud provider (AWS, GCP, or Azure), with familiarity across:
Solid security architecture fundamentals: able to design and review end-to-end systems, reason about threat models and risk trade-offs, and recommend appropriate controls across application, data, and infrastructure layers
Ability to read and reason about code (e.g., Go, Java, or similar languages) and familiarity with IaC (Terraform/CloudFormation), CI/CD, and security automation tooling (e.g., CSPM, IaC scanning, SAST, SCA)
Demonstrated experience leading security reviews and projects in partnership with engineering teams (e.g., threat modeling, design reviews, targeted testing) and turning findings into pragmatic, prioritized remediation work
Excellent written and verbal communication skills; you can explain complex cloud and product security issues in a way that builds trust with engineers, leaders, and, when needed, customers
A strong sense of ownership and follow-through, paired with a collaborative working style--you bring others along, create space for their input, and offer specific, actionable feedback

In this role you will…

Co-own and drive Atlas cloud security initiatives such as control plane hardening, cloud security baselines, identity and access patterns, customer account protections, and data-plane protections for multi-tenant environments
Perform and lead security reviews for Atlas features and platform changes in cloud environments, including architecture review, threat modeling, and targeted testing, with an emphasis on pragmatic, actionable guidance
Design and review cloud architectures across AWS, GCP, and Azure--covering networking, IAM, secrets management, and service-to-service access--and help define secure reference architectures that can be reused by Atlas teams
Embed security into platforms and guardrails by working with platform, SRE, and other security engineering teams to implement policies and automation (e.g., policy-as-code, secure defaults, pre-deployment checks) that make the secure path the easiest path for developers
Use CSPM, infrastructure vulnerability data, and IaC scanning to identify meaningful posture gaps in Atlas environments and drive concrete hardening work with clear ownership, coverage, and success metrics
Partner with Detection & Response, SRE, and other security teams to bring product and cloud context to incidents, threat hunts, and posture investigations, and to design new detections tied to Atlas and its cloud footprint
Influence roadmaps and priorities by translating security risk and customer expectations into well-scoped problem statements, options, and trade-offs that resonate with engineering and product leaders
Mentor and support other engineers (within Product Security and partner teams), contributing to internal documentation, reviews, and training that raise the bar for secure cloud design and implementation

Nice to Haves

Prior experience as a security engineer for a multi-tenant SaaS or cloud platform, particularly in data, database, or infrastructure-as-a-service domains
Hands-on experience with Atlas-like environments: control planes orchestrating resources across multiple cloud providers, with strong isolation and blast-radius containment requirements
Experience improving the signal quality and developer adoption of CSPM, vulnerability management, or IaC scanning in large engineering organizations
Public contributions to the security community (talks, tools, standards, or publications) in cloud or product security
Experience mentoring other security engineers or serving as a bar-raiser in interviews for product/cloud security roles

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform, the most widely available, globally distributed database on the market, helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and over 60,000 customers, including 75% of the Fortune 100 and AI-native startups, relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB.

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys.Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB is an equal opportunities employer.

Req ID: 1273407903