Staff Cloud Security Engineer
United States
Full Time
2 hours ago
$190,000 - $250,000 USD
No Visa Sponsorship
Key skills
AnsibleAWSAzureCloudGoogle Cloud PlatformPythonTerraformBashGCPGoogle CloudCloudFormationCI/CDRisk ManagementCommunicationCloud SecurityWAFFirewall
About this role
Role Overview
- Design, implement, and maintain security controls, processes, and architectures across major cloud environments.
- Conduct risk assessments, penetration tests, vulnerability management, and system hardening for cloud services and workloads.
- Collaborate closely with engineering, DevOps, compliance, and business stakeholders to enable secure solution delivery and effective risk management.
- Build and maintain Infrastructure as Code (IaC) security practices (Terraform, CloudFormation) and work within CI/CD pipelines to embed security in the software development lifecycle.
- Partner with the GRC team to ensure compliance automation tooling is implemented effectively across required scope.
- Serve as subject matter expert on cloud security technologies, best practices, and emerging threats while providing mentorship to other engineers.
- Lead incident investigations, performing root cause analysis and driving remediation actions.
- Participate in weekly on-call rotation with the security engineering team.
- Operate and mature our CSPM/CNAPP program, driving posture management, misconfiguration remediation, and continuous control monitoring.
Requirements
- 5+ years of experience securing public cloud environments (AWS, Azure, or GCP), including architecture design and security operations.
- In-depth expertise with cloud security tools and practices: SIEM, IDS/IPS, WAF, identity/access management, encryption, vulnerability management.
- Proficiency with programming and scripting languages (such as Python, Bash, or similar) and automation frameworks.
- Experience in Infrastructure-as-Code (such as Terraform, CloudFormation, Ansible) and DevSecOps practices.
- Experience in CSPM/CNAPP and CWPP tooling and workflows.
- Knowledge of network and application security: firewall management, network segmentation, secure API design.
- Excellent communication, documentation, teamwork, and analytical problem-solving skills. We’re looking for a hands on keyboard, self-starter who understands risk and prioritizes the most impactful work.
- Experience with SOC 2 Type 2 and FedRAMP a plus
Tech Stack
- Ansible
- AWS
- Azure
- Cloud
- Google Cloud Platform
- Python
- Terraform
Benefits
- We invest in our crew’s health, families, and financial futures with a benefits package designed to support you inside and outside the office.