Key skills
PythonGoBashAIAWSGCPTerraformIAMCI/CDCloud Security
About this role
Commerce is a company focused on empowering businesses through an AI-driven commerce ecosystem. They are seeking an Infrastructure Security Engineer II to enhance the security of their cloud platforms and engineering systems, collaborating with various teams to improve security measures and incident response capabilities.
Responsibilities:
- Partner with engineering and platform teams to review and improve the security of cloud infrastructure, platform services, and deployment patterns
- Review infrastructure designs and infrastructure as code with a focus on identity, network exposure, secrets handling, logging, and resilience
- Help build and maintain security guardrails, detections, and automation across our cloud and platform environments
- Contribute to the security of containerized workloads, CI/CD systems, and cloud-native services
- Support incident response and security investigations involving infrastructure, cloud platforms, identities, and engineering systems
- Identify opportunities to reduce risk through better defaults, automation, hardening, and architectural improvements
- Help improve security visibility through logs, detections, telemetry, and threat-informed analysis
- Collaborate with stakeholders across engineering and security to prioritize and remediate infrastructure security findings
- Contribute to internal security tools, processes, and standards that scale with the organization
- Advocate for practical, durable security improvements that protect Commerce, our merchants, and their shoppers
Requirements:
- 3+ years of experience in infrastructure security, cloud security, security engineering, platform security, SRE, or a closely related field
- Experience working in one or more public cloud environments such as AWS or GCP
- Experience working in regulated environments and partnering with GRC teams to implement security controls that support compliance requirements
- Familiarity with infrastructure as code concepts and tools such as Terraform
- Experience with cloud logging, SIEM, detection engineering, or threat detection in cloud environments
- Working knowledge of infrastructure and platform security concepts such as IAM, network segmentation, secrets management, logging, vulnerability management, and secure service configuration
- Experience reviewing technical designs and partnering with engineers to improve security outcomes
- Experience supporting or collaborating on incident response, investigations, or security operations related to infrastructure and cloud systems
- Comfortable writing code or scripts to automate tasks, analyze data, or build internal tooling in Python, Go, Bash, or similar languages
- Able to explain technical risks and tradeoffs clearly to engineers and stakeholders
- Strong judgment, curiosity, and a practical approach to solving security problems
- Familiarity with cloud posture management, runtime security, or policy-as-code tooling
- Experience with CI/CD security, secrets management, or software supply chain security
- Experience using AI-enabled tools to improve efficiency, automate repetitive work, or accelerate analysis in engineering or security workflows
- Security or cloud certifications are welcome, but not required