Provide senior-level technical support for security testing services across infrastructure, systems, and applications
Strengthen cloud security posture through automation, tooling, and cross-functional collaboration
Develop and maintain CSPM tooling, automation pipelines, and integrations to support vulnerability identification, prioritization, and remediation across cloud environments
Engineer and operationalize cloud security posture controls, including preventative policies, build enforcement rules, and automated remediation workflows
Build and maintain integrations between security platforms and enterprise systems (e.g., CI/CD pipelines, reporting tools) to enable self-service capabilities and streamline exception management
Configure and tune cloud security policies to ensure accurate and reliable assessment outcomes
Analyze vulnerability and misconfiguration data to enhance risk scoring by incorporating exploit intelligence, environmental context, and threat signals
Partner with Platform Engineering, DevOps, SRE, and application teams to implement shift-left security practices and drive adoption of security tooling
Contribute to Infrastructure-as-Code (IaC) reviews, ensuring security controls are embedded, version-controlled, and enforced at deployment
Support special projects, including AI-assisted security tooling initiatives

Minimum of 3+ years of experience in cloud security, vulnerability management, or security engineering
Bachelor's degree in a related field or equivalent combination of education and experience
Proficiency in at least one programming language (e.g., Python, Go, JavaScript/TypeScript, Ruby)
Hands-on experience with a major cloud platform (AWS, Azure, or GCP)
Experience with Infrastructure-as-Code (e.g., Terraform, CloudFormation)
Familiarity with CSPM or cloud security tooling
Understanding of API design, systems integration, and event-driven architectures

Cloud Security Engineer

Key skills