Senior Platform Security Engineer
ASUS COMPUTER INTERNATIONAL
Boston, MA, US
Onsite
2026-07-01
Announced salary
$164,000 - $237,000
Low
$100K
Median
$136K
High
$180K
Market in Boston · BLS OEWS 2025
Estimated net pay
$9,623 - $13,593
/month · 30% withheld
after tax & contributions · Single, no dependents
Job description
**Job Description Overview:**
The ASUS Robotics \& AI Center is seeking a Platform Security Engineer to join our global research and development team. This role contributes to the security posture of our cloud\-based platform, spanning application hardening, infrastructure security, and the day\-to\-day practices that keep our systems secure as they scale.
We are looking for an engineer with hands\-on experience in application and cloud security, a proactive mindset for identifying and mitigating risk, and the ability to collaborate effectively across a multidisciplinary engineering team. The ideal candidate is a strong individual contributor who is eager to deepen their expertise in security architecture while working alongside experienced engineers across our Boston and Taipei offices.
**Essential Duties and Responsibilities:**
* Contribute to application and infrastructure security across the platform, supporting production launch and long\-term scaling.
* Help harden authentication (OAuth/session handling) and API authorization patterns, including multi\-tenant access control.
* Configure and maintain IAM policies, service accounts, and least\-privilege access controls across cloud infrastructure.
* Secure data flows including file uploads, signed URLs, database access, and secrets management.
* Set up and maintain security monitoring, logging, and alerting systems.
* Build and maintain security tooling integrated into CI/CD pipelines, including SAST, DAST, and dependency scanning.
* Perform regular security assessments, dependency audits, and penetration testing.
* Support incident response and contribute to root cause analysis.
* Collaborate with the engineering team on secure development practices and help document security controls and incident response procedures.
**Knowledge and Skills:**
* Familiarity with cloud security on GCP or equivalent platforms, including IAM, VPC, IAP, Secret Manager, and Cloud Armor.
* Solid understanding of OAuth, sessio