Senior Security Engineer

Why Work For Us
Grubhub, part of Wonder Group Inc , is all about connecting hungry diners with our network of over 375,000 merchants nationwide. Innovative technology, user-friendly platforms and streamlined delivery capabilities set us apart and make us an industry leader in the world of online food ordering. When you join our team, you become part of a community that works together to innovate, solve problems, grow, work hard and have a ton of fun in the process!
Grubhub is dedicated to providing secure and seamless services for millions of customers. The Security Engineering team is responsible for building and maintaining security capabilities across a broad range of domains, including cloud and infrastructure security, application and product security, and vulnerability management. As a Senior Security Engineer with a focus on Cloud and Infrastructure, you will build innovative tooling, help map, prioritize and reduce risks, and partner with teams across the organization to enhance our overall security posture.
The Impact You Will Make:

• Design and maintain advanced detection and prevention capabilities that reduce cloud and infrastructure risks with minimal disruption to engineering velocity.
• Lead the development and integration of dynamic attack surface mapping into core security processes, help prioritizing high-risk areas and supporting workflows such as application threat modeling and vulnerability management.
• Identify blind spots and coverage gaps across assets and attack surfaces, driving initiatives to uncover and mitigate them.
• Act as a subject matter expert in Cloud and Infrastructure Security, supporting and empowering teams to strengthen and standardize their security practices.
• Collaborate with security engineering and operations teams to evolve and extend core security capabilities, leveraging both your experience and the solutions you help build.
• Drive security automation by building tools and scalable processes that reduce manual effort and improve security resilience.

Duties will include, but are not limited to:
Design & Implement-

• Identify existing gaps in security controls that protect our cloud-deployed and infrastructure assets across hybrid and multi-cloud environments.
• Continuously improve cloud and infrastructure security controls to support business goals.
• Develop and implement relevant security capabilities based on cross-organizational priorities.

Collaborate & Support-

• Build and provide security capabilities across all business units within Grubhub/Wonder group.
• Participate in the development and execution of other team initiatives, including Vulnerability Management, AppSec, and Product Security.
• Support and collaborate with cross-functional teams such as SecOps, SRE, and infrastructure to improve security capabilities.
• Ensure alignment with security team goals and processes by integrating and aligning cloud and infrastructure solutions with initiatives such as attack surface mapping, incident response, and edge security.

Own & Lead-

• Serve as the SME for Cloud and Infrastructure Security, consulting and guiding infrastructure teams on secure deployment patterns, system hardening, and operational best practices.
• Build standard solutions aligned with Grubhub and engineering practices while contributing to the cybersecurity platform and reference architecture.
• Help and mentor junior engineers, cybersecurity teammates, and stakeholders across the engineering organization.

Continuous Improvement-

• Continuously assess and enhance cloud and infrastructure security across domains through an iterative, data-informed process that drives ongoing improvement and alignment with evolving threats and business needs.
• Provide proactive services such as secure IaC templates and managed patching for services and containers to reduce developer friction and streamline secure deployment.
• Reduce friction from manual or inefficient workflows, whether they're partially automated or still manual, by streamlining and expanding automation to make processes more efficient, scalable, and sustainable.

What You Bring to the Table:
Required Qualifications-

• Bachelor's degree in Computer Science, Information Technology, or a related field; an advanced degree is preferred.
• Minimum of 5 years of experience in cloud and infrastructure security, with expertise in AWS, GCP, or Azure.
• Hands-on experience with Infrastructure as Code (Pulumi, Terraform), including developing reusable modules and integrating with CI/CD workflows to support secure and scalable infrastructure provisioning.
• Proficiency in Python or similar programming languages, with experience building both automation workflows and standalone services or internal tools to support security use cases.
• Familiarity with DevSecOps practices and CI/CD pipeline integrations.
• Experience with containerization and orchestration technologies (e.g., Docker, Kubernetes).
• Deep understanding of cloud and infrastructure attack vectors, exploits, and mitigations.
• Excellent communication and collaboration skills, with the ability to convey technical concepts to non-technical stakeholders.
• Strong analytical and problem-solving abilities, with attention to detail and the ability to manage multiple priorities in a dynamic environment.
• Proven ability to work effectively in a fast-paced, dynamic environment while managing multiple priorities simultaneously.

Preferred Qualifications-

• Familiarity with security compliance frameworks (CIS, NIST, ISO 27001) and regulatory standards (PCI DSS, GDPR, HIPAA).
• Know how to provide security as a service versus a security service.
• Experience in building and deploying cloud security automation tools and frameworks.
• Industry certifications such as CCSP, CompTIA Cloud+, or CISSP.
• Cloud Infrastructure related certification such as Pulumi Essentials, AWS Certified Security/Solution Architect or other related certifications.
• Experience with CSPM tools and methodologies to identify misconfigurations and vulnerabilities in cloud-native services.

The base salary for this position is below:
Illinois: $160,000
And Of Course, Perks!

• Flexible PTO. Grubhub employees enjoy a generous amount of time to recharge.
• Health and Wellness. Excellent medical, dental and vision benefits, 401k matching, employee network groups and paid parental leave are just a few of our programs to support your overall well-being.
• Free Meals. Our employees get a weekly Grubhub credit to enjoy.
• Social Impact. At Grubhub we believe in giving back through programs like the Grubhub Community Fund . Employees are also given paid time off each year to support the causes that are important to them.

Grubhub is an equal opportunity employer. We welcome diversity and encourage a workplace that is just as diverse as the customers we serve. We evaluate qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics. If you're applying for a job in the U.S. and need a reasonable accommodation for any part of the employment process, please send an email to TalentAcquisition@grubhub.com and let us know the nature of your request and contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this email address.
If you are a resident of the State of California and would like a copy of our CA privacy notice, please email privacy@grubhub.com.