Senior Cloud Security Engineer
The Senior Cloud Security Engineer position will report to the Head of Security.
As the Senior Cloud Security Engineer, you will:
Partner with Infrastructure Engineering to align security controls with architecture, participate in design reviews/threat modeling, and drive infrastructure-focused security initiatives (e.g., backup integrity, network access control, automation).
Administer and tune WAF, bot mitigation, DDoS, and web protection platforms; collaborate with teams to harden externally exposed services and reduce false positives.
Operate CSPM, XDR, DLP, CASB, and cloud-native security tools; enforce secure baselines (AWS, Kubernetes, containers); integrate controls into DevOps/IaC pipelines; automate compliance and evidence collection.
Implement secure VPN, remote access, and identity-aware proxies; advance zero-trust networking; integrate IAM across AWS/SaaS; ensure logging and monitoring of access paths.
Build telemetry pipelines; integrate with SIEM, CSPM, IDS, and vulnerability scanning; tune SIEM for detection effectiveness; collaborate with SecOps to enhance alert fidelity and coverage.
Deploy policy-as-code, control automation, and GRC integrations; support ongoing compliance through automated tooling and infrastructure telemetry.
About You:
6+ years of experience in security engineering, infrastructure security, or cloud security roles.
2+ years focused on AWS cloud environments, including security tooling and service hardening.
Hands-on experience with SIEM, CSPM, XDR/EDR, CASB, vulnerability scanners, WAF, and DNS filtering.
Strong scripting or programming experience (Python, Go, Shell, or equivalent).
Familiarity with IaC and cloud automation tools (e.g., Terraform, Ansible, CloudFormation).
Even Better:
Professional security certifications (e.g., AWS Security Specialty, GCLD, CCSP, CCSK).
Experience with container runtime security and Kubernetes RBAC controls.
Familiarity with immutable infrastructure concepts and backup resiliency practices.
Working knowledge of regulatory frameworks like SOC 2, FFIEC, GLBA, or NY DFS.
Experience supporting detection infrastructure and compliance automation.
Where:
This role will be based in the US.
#LI-NS1
About the job
Apply for this position
Senior Cloud Security Engineer
The Senior Cloud Security Engineer position will report to the Head of Security.
As the Senior Cloud Security Engineer, you will:
Partner with Infrastructure Engineering to align security controls with architecture, participate in design reviews/threat modeling, and drive infrastructure-focused security initiatives (e.g., backup integrity, network access control, automation).
Administer and tune WAF, bot mitigation, DDoS, and web protection platforms; collaborate with teams to harden externally exposed services and reduce false positives.
Operate CSPM, XDR, DLP, CASB, and cloud-native security tools; enforce secure baselines (AWS, Kubernetes, containers); integrate controls into DevOps/IaC pipelines; automate compliance and evidence collection.
Implement secure VPN, remote access, and identity-aware proxies; advance zero-trust networking; integrate IAM across AWS/SaaS; ensure logging and monitoring of access paths.
Build telemetry pipelines; integrate with SIEM, CSPM, IDS, and vulnerability scanning; tune SIEM for detection effectiveness; collaborate with SecOps to enhance alert fidelity and coverage.
Deploy policy-as-code, control automation, and GRC integrations; support ongoing compliance through automated tooling and infrastructure telemetry.
About You:
6+ years of experience in security engineering, infrastructure security, or cloud security roles.
2+ years focused on AWS cloud environments, including security tooling and service hardening.
Hands-on experience with SIEM, CSPM, XDR/EDR, CASB, vulnerability scanners, WAF, and DNS filtering.
Strong scripting or programming experience (Python, Go, Shell, or equivalent).
Familiarity with IaC and cloud automation tools (e.g., Terraform, Ansible, CloudFormation).
Even Better:
Professional security certifications (e.g., AWS Security Specialty, GCLD, CCSP, CCSK).
Experience with container runtime security and Kubernetes RBAC controls.
Familiarity with immutable infrastructure concepts and backup resiliency practices.
Working knowledge of regulatory frameworks like SOC 2, FFIEC, GLBA, or NY DFS.
Experience supporting detection infrastructure and compliance automation.
Where:
This role will be based in the US.
#LI-NS1