Senior Security Engineer - Cloud Security
At Webflow, our mission is to bring development superpowers to everyone. As the pioneer of the Website Experience Platform (WXP), we’re redefining how teams Build, Manage, and Optimize for the web — combining visual development, powerful CMS, AI-driven personalization, and seamless hosting in a unified platform.
From independent creators to global enterprises, hundreds of thousands of organizations use Webflow to power what’s possible on the web.
About the Role
We’re looking for a Senior Security Engineer, Cloud Security to join Webflow’s Security Operations team. You’ll collaborate closely with our Infrastructure Engineering, Security DevOps, and Application Security teams to harden Webflow’s cloud environment, ensure secure-by-design principles in our AWS infrastructure, and help us meet current and future security needs.
This role is ideal for an engineer who thrives at the intersection of security architecture, DevOps, and automation — someone passionate about building scalable, secure, and resilient systems.
Location: Buenos Aires or Remote (Argentina) Type: Full-time
Responsibilities
You’ll lead and execute cloud security initiatives that strengthen Webflow’s infrastructure and operational security posture. Responsibilities are grouped by scope and impact.
Design, implement, and maintain secure AWS infrastructure following best practices (least privilege, network segmentation, encryption, monitoring).
Partner with infrastructure and platform teams to embed security controls in CI/CD pipelines, infrastructure as code, and containerized environments.
Own the cloud security posture management (CSPM) strategy, ensuring continuous compliance and automated detection of misconfigurations.
Evaluate and deploy security tooling for cloud visibility, IAM governance, and intrusion detection.
Collaborate with engineering teams to secure Kubernetes and containerized workloads, ensuring adherence to runtime and image scanning policies.
Respond to and investigate cloud-related security incidents, providing technical expertise during triage and remediation.
Contribute to the design and execution of Webflow’s cloud security roadmap, identifying areas for automation and scalability.
Conduct threat modeling and risk assessments for cloud architecture and new service deployments.
Develop internal tools and scripts to enhance cloud monitoring and detection capabilities.
Stay current with evolving AWS services, vulnerabilities, and security trends — proactively identifying opportunities to enhance Webflow’s defenses.
About You
You’ll thrive as a Senior Security Engineer, Cloud Security if you:
Have 5+ years of experience in cloud security, infrastructure engineering, or DevSecOps (with at least 3 years focused on AWS).
Demonstrate strong knowledge of AWS services and security controls
Have hands-on experience securing Kubernetes and containerized workloads.
Are proficient with infrastructure as code (Pulumi, Terraform, CloudFormation)
Understand network security concepts including firewalls, segmentation, and zero trust.
Can script or automate security tasks using Python, Go, or Bash.
Communicate clearly and collaborate effectively across security, DevOps, and product teams.
Bring a proactive, builder’s mindset — identifying and closing gaps before they become issues.
Nice to Have
Experience with multi-account AWS architectures and security guardrail enforcement via Control Tower or Organizations.
Familiarity with secrets management solutions
Knowledge of threat detection and response in serverless or containerized environments.
Contributions to open-source security tools or participation in cloud security communities.
You Are
Security-minded: You balance risk reduction with engineering agility.
Collaborative: You build partnerships across teams and mentor others.
Pragmatic: You prioritize high-impact actions over theoretical perfection.
Curious: You stay ahead of emerging technologies and attack vectors.
Ownership-driven: You take responsibility for outcomes, not just tasks.
Our Core Behaviors:
Build lasting customer trust. We build trust by taking action that puts customer trust first.
Win together. We play to win, and we win as one team. Success at Webflow isn't a solo act.
Reinvent ourselves. We don't just improve what exists, we imagine what's possible.
Deliver with speed, quality, and craft. We move fast because the moment demands it, and we do so without lowering the bar.
Benefits & wellness
Equity ownership (RSUs) in a growing, privately-owned company
100% employer-paid healthcare, vision, and dental insurance coverage for full-time employees (working 30+ hours per week) and their dependents. Full-time employees may also be eligible for voluntary insurance options where applicable in the respective country of employment
12 weeks of paid parental leave for both birthing and non-birthing caregivers, as well as an additional 6-8 weeks of pregnancy disability leave for birthing parents to be used before child bonding leave (note: where local requirements are more generous, employees receive the greater benefit); full-time employees also have access to family planning care and reimbursement
Flexible PTO for all locations and sabbatical program
Access to mental wellness and professional coaching, therapy, and Employee Assistance Program
Monthly stipends to support work and wellness
401k plan or pension schemes (in countries where statutorily required), and other financial wellness benefits, like CPA and financial advisor coverage
Temporary employees may be eligible for paid holiday and time off, statutory leaves of absence, and company-sponsored medical benefits depending on their Fixed Term Contract and their country/state of employment.
Remote, together
At Webflow, equality is a core tenet of our culture. We are an Equal Opportunity (EEO)/Veterans/Disabled Employer and are committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences. Employment decisions are made on the basis of job-related criteria without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by applicable law. Pursuant to the San Francisco Fair Chance Ordinance, Webflow will consider for employment qualified applicants with arrest and conviction records.
Stay connected
Not ready to apply, but want to be part of the Webflow community? Consider following our story on our Webflow Blog, LinkedIn, X (Twitter), and/or Glassdoor.
Please note:
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Upon interview scheduling, instructions for confidential accommodation requests will be administered.
To join Webflow, you'll need a valid right to work authorization depending on the country of employment.
If you are extended an offer, that offer may be contingent upon your successful completion of a background check, which will be conducted in accordance with applicable laws. We may obtain one or more background screening reports about you, solely for employment purposes.
For information about how Webflow processes your personal information, please review Webflow’s Applicant Privacy Notice.
Senior Security Engineer - Cloud Security
At Webflow, our mission is to bring development superpowers to everyone. As the pioneer of the Website Experience Platform (WXP), we’re redefining how teams Build, Manage, and Optimize for the web — combining visual development, powerful CMS, AI-driven personalization, and seamless hosting in a unified platform.
From independent creators to global enterprises, hundreds of thousands of organizations use Webflow to power what’s possible on the web.
About the Role
We’re looking for a Senior Security Engineer, Cloud Security to join Webflow’s Security Operations team. You’ll collaborate closely with our Infrastructure Engineering, Security DevOps, and Application Security teams to harden Webflow’s cloud environment, ensure secure-by-design principles in our AWS infrastructure, and help us meet current and future security needs.
This role is ideal for an engineer who thrives at the intersection of security architecture, DevOps, and automation — someone passionate about building scalable, secure, and resilient systems.
Location: Buenos Aires or Remote (Argentina) Type: Full-time
Responsibilities
You’ll lead and execute cloud security initiatives that strengthen Webflow’s infrastructure and operational security posture. Responsibilities are grouped by scope and impact.
Design, implement, and maintain secure AWS infrastructure following best practices (least privilege, network segmentation, encryption, monitoring).
Partner with infrastructure and platform teams to embed security controls in CI/CD pipelines, infrastructure as code, and containerized environments.
Own the cloud security posture management (CSPM) strategy, ensuring continuous compliance and automated detection of misconfigurations.
Evaluate and deploy security tooling for cloud visibility, IAM governance, and intrusion detection.
Collaborate with engineering teams to secure Kubernetes and containerized workloads, ensuring adherence to runtime and image scanning policies.
Respond to and investigate cloud-related security incidents, providing technical expertise during triage and remediation.
Contribute to the design and execution of Webflow’s cloud security roadmap, identifying areas for automation and scalability.
Conduct threat modeling and risk assessments for cloud architecture and new service deployments.
Develop internal tools and scripts to enhance cloud monitoring and detection capabilities.
Stay current with evolving AWS services, vulnerabilities, and security trends — proactively identifying opportunities to enhance Webflow’s defenses.
About You
You’ll thrive as a Senior Security Engineer, Cloud Security if you:
Have 5+ years of experience in cloud security, infrastructure engineering, or DevSecOps (with at least 3 years focused on AWS).
Demonstrate strong knowledge of AWS services and security controls
Have hands-on experience securing Kubernetes and containerized workloads.
Are proficient with infrastructure as code (Pulumi, Terraform, CloudFormation)
Understand network security concepts including firewalls, segmentation, and zero trust.
Can script or automate security tasks using Python, Go, or Bash.
Communicate clearly and collaborate effectively across security, DevOps, and product teams.
Bring a proactive, builder’s mindset — identifying and closing gaps before they become issues.
Nice to Have
Experience with multi-account AWS architectures and security guardrail enforcement via Control Tower or Organizations.
Familiarity with secrets management solutions
Knowledge of threat detection and response in serverless or containerized environments.
Contributions to open-source security tools or participation in cloud security communities.
You Are
Security-minded: You balance risk reduction with engineering agility.
Collaborative: You build partnerships across teams and mentor others.
Pragmatic: You prioritize high-impact actions over theoretical perfection.
Curious: You stay ahead of emerging technologies and attack vectors.
Ownership-driven: You take responsibility for outcomes, not just tasks.
Our Core Behaviors:
Build lasting customer trust. We build trust by taking action that puts customer trust first.
Win together. We play to win, and we win as one team. Success at Webflow isn't a solo act.
Reinvent ourselves. We don't just improve what exists, we imagine what's possible.
Deliver with speed, quality, and craft. We move fast because the moment demands it, and we do so without lowering the bar.
Benefits & wellness
Equity ownership (RSUs) in a growing, privately-owned company
100% employer-paid healthcare, vision, and dental insurance coverage for full-time employees (working 30+ hours per week) and their dependents. Full-time employees may also be eligible for voluntary insurance options where applicable in the respective country of employment
12 weeks of paid parental leave for both birthing and non-birthing caregivers, as well as an additional 6-8 weeks of pregnancy disability leave for birthing parents to be used before child bonding leave (note: where local requirements are more generous, employees receive the greater benefit); full-time employees also have access to family planning care and reimbursement
Flexible PTO for all locations and sabbatical program
Access to mental wellness and professional coaching, therapy, and Employee Assistance Program
Monthly stipends to support work and wellness
401k plan or pension schemes (in countries where statutorily required), and other financial wellness benefits, like CPA and financial advisor coverage
Temporary employees may be eligible for paid holiday and time off, statutory leaves of absence, and company-sponsored medical benefits depending on their Fixed Term Contract and their country/state of employment.
Remote, together
At Webflow, equality is a core tenet of our culture. We are an Equal Opportunity (EEO)/Veterans/Disabled Employer and are committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences. Employment decisions are made on the basis of job-related criteria without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by applicable law. Pursuant to the San Francisco Fair Chance Ordinance, Webflow will consider for employment qualified applicants with arrest and conviction records.
Stay connected
Not ready to apply, but want to be part of the Webflow community? Consider following our story on our Webflow Blog, LinkedIn, X (Twitter), and/or Glassdoor.
Please note:
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Upon interview scheduling, instructions for confidential accommodation requests will be administered.
To join Webflow, you'll need a valid right to work authorization depending on the country of employment.
If you are extended an offer, that offer may be contingent upon your successful completion of a background check, which will be conducted in accordance with applicable laws. We may obtain one or more background screening reports about you, solely for employment purposes.
For information about how Webflow processes your personal information, please review Webflow’s Applicant Privacy Notice.