Senior Cloud Security Engineer Position
This role is ideal for a seasoned security expert looking to make a significant impact in cloud security.
* The selected candidate will be responsible for designing and implementing robust security controls across our cloud infrastructure, networks, containers, and CI/CD pipelines.
* They will drive the adoption of industry-standard security best practices across engineering teams, focusing on automation, secure defaults, and developer enablement.
* Our ideal candidate will own and evolve threat detection and prevention strategies, leveraging cloud-native services such as Guard Duty, AWS Config, and Cloud Trail.
* They will implement and manage application and supply chain security tooling, including tools like GitHub Advanced Security, Snyk, Trivy, and Semgrep.
* * Define IAM policies, secrets management, and service-to-service authentication standards that align with industry frameworks.
* Lead security incident response and postmortems, building systems to reduce Mean Time To Recovery (MTTR) and improve detection fidelity.
* Collaborate with engineering, compliance, and legal teams to ensure our infrastructure meets stringent regulatory requirements.
* Contribute to security awareness and training initiatives across the organization.
* Participate in threat modeling, architecture reviews, and risk assessments to identify potential vulnerabilities.
* Support the generation of automated audit evidence for compliance needs.
* Stay ahead of emerging cloud security threats and continuously strengthen our defenses.
Our ideal candidate will have:
* A minimum of 6-8 years of experience in security engineering, with at least 3+ years focused on cloud-native security.
* Proven experience securing modern infrastructure: containers (Docker), orchestration (Kubernetes), and infrastructure-as-code (IaC) tools.
* Deep understanding of identity and access management, network segmentation, and cloud security architectures.
* Hands-on experience with tools like Secrets Management (Hashi Corp Vault, AWS Secrets Manager), Security Scanning (Snyk, Trivy, Git Hub Advanced Security), and Monitoring & Detection (Cloud Trail, Guard Duty, Falco).
* Strong programming/scripting skills in Python, Go, or Bash.
* Solid knowledge of secure software development lifecycle (SSDLC) and DevSecOps principles.
* Familiarity with compliance frameworks (SOC 2, ISO 27001, HIPAA, or PCI-DSS).
* Experience leading security reviews, audits, or risk assessments.
We offer a competitive salary package, flexible working environment, and opportunities for growth and professional development. If you are passionate about cloud security and want to make a real impact, we encourage you to apply.