Senior Security Engineer II

Your Impact

Axon’s Enterprise Security team is looking for a Senior Security Engineer II focused on building and operating scalable enterprise security controls across cloud, network, endpoints, and core business platforms. This is a hands-on engineering role where you’ll design secure-by-default patterns, implement guardrails, improve firewall and segmentation governance, and automate high-friction security work using infrastructure-as-code and lightweight services.  You’ll partner closely with Platform/SRE, IT Infrastructure, and application owners to deliver security improvements that are practical, measurable, and operationally reliable.  This is not a Security Operations or Incident Response role. You will be expected to ship production-grade controls and operate them with clear ownership, monitoring, and safe rollout/rollback practices.

What You’ll Do

Location: This role is based out of our Scottsdale, AZ Office and follows a hybrid schedule. We rely on in-person collaboration and ask that team members work onsite Tuesdays through Fridays, with the flexibility to work remotely on Mondays, unless there is an approved workplace accommodation. We believe that connection fuels innovation, and our in-office culture is designed to foster meaningful teamwork, mentorship, and shared success.
Reports to: Senior Manager of Enterprise Security
Direct Reports: 0

• Engineer and operate enterprise security controls across cloud, network, endpoints, and enterprise platforms, balancing risk reduction with operational usability.
• Build and maintain cloud security guardrails (baseline configurations, policy enforcement, drift detection) and improve visibility through asset inventory, logging coverage, and actionable telemetry.
• Improve network security and firewall governance, including segmentation patterns, rule hygiene (review cadence, deprecations, ownership), and safe change management.
• Define and ship secure-by-default platform patterns and reference architectures for common service types (microservices, SaaS integrations, admin tooling), including standards for secrets, keys/certificates, and secure connectivity.
• Deliver automation and IaC/policy-as-code solutions to enforce controls, reduce toil, and generate auditable evidence (e.g., Terraform and policy/config frameworks).
• Establish control reliability and assurance: dashboards and control health metrics, monitoring and alerting, runbooks, and predictable operational ownership for high-blast-radius controls.
• Lead technical design and threat modeling for security initiatives; drive remediation of high-impact findings through engineering execution and cross-team alignment.

 

What You Bring

• 6+ years in security engineering, platform engineering, systems engineering, or similar roles with meaningful ownership of production systems.
• Hands-on engineering ability in one or more languages (Python, Go, TypeScript, etc.) building integrations, automation, or internal services.
• Experience shipping and operating changes that have real operational impact, with an emphasis on safety (staged rollout, rollback planning, change governance).
• Working knowledge of enterprise security fundamentals: least privilege, secrets handling, logging/auditability, threat modeling, and secure-by-default design.
• Experience with infrastructure-as-code (Terraform or equivalent) and configuration/policy-as-code approaches.
• Experience implementing cloud security controls (guardrails, posture improvements, policy enforcement, logging standards) in AWS/Azure/GCP.
• Experience with enterprise n