Senior Security Software Engineer (Cryptography and Threat Modeling)
Job description
We are seeking a Senior Security Software Engineer specializing in Cryptography and Threat Modeling to drive cryptographic inventory initiatives and support FIPS 140-3 compliance across products. This role involves close collaboration with Security and product engineering teams to facilitate threat modeling workshops and deliver comprehensive security documentation. Experience the freedom of remote work from anywhere in Georgia, whether from the comfort of your home, our modern offices in Tbilisi and Batumi or a coworking space in Kutaisi. Responsibilities Drive the creation of a crypto inventory using IBM QSE and agentic validation Review findings and issues related to FIPS 140-3 compliance Define, coordinate and track mitigation plans with engineering teams Facilitate threat modeling workshops for cloud applications Produce clear and actionable threat modeling reports Contribute to broader Secure Development and Operations Lifecycle (SDOL) activities Deliver a complete crypto inventory including FIPS 140-3 compliance reports Track progress on cryptographic mitigation plans in collaboration with engineering teams Prepare handover documentation and support knowledge transfer to the Security Team Requirements 3+ years of hands-on experience in software security with end-to-end implementation of security initiatives Expertise in FIPS 140-3 compliance and cryptographic inventory management Capability to work independently and take ownership of security initiatives with minimal supervision Skills in driving topics to completion within complex security projects Proficiency in documentation, communication and stakeholder management Background in facilitating threat modeling workshops and producing security reports Upper-Intermediate English language proficiency (B2+) Nice to have Familiarity with IBM QSE Background in cryptography Capability to apply agentic AI in hands-on projects Proficiency in using Jira for task and project tracking Understanding of security requirements in highly regulated environments such as FedRAMP We offer We connect like-minded people Delivering innovative solutions to industry leaders, making a global impact Enjoyable working environment, whether it is the vibrant office or the comfort of your own home Opportunity to work abroad for up to two months per year Relocation opportunities within our offices in 55+ countries Corporate and social events We invest in your growth Leadership development, career advising, soft skills and well-being programs Certifications, including GCP, Azure and AWS Unlimited access to LinkedIn Learning and Udemy Free English classes with certified teachers We cover it all Participation in the Employee Stock Purchase Plan Monetary bonuses for engaging in the referral program Comprehensive medical & family care package Five trust days per year (sick leave without a medical certificate) Benefits package (sports activities, a variety of stores and services) EPAM Georgia is a team of innovators united by a passion for technology. The dynamic and inclusive culture we embrace helps positively impact our communities, clients, and employees. Here you will collaborate with multi-national teams, contribute to numerous cutting-edge projects, deliver the most creative solutions, and have an opportunity to learn. Our people are at the heart of our success, and we are proud to provide talents with a solid ground to develop and grow.