Key skills
PythonGoBashAIAWSAzureIAMCI/CDCommunicationCollaborationNetwork SecurityCloud Security
About this role
Otter.ai is a leading tool for meeting transcription and collaboration, utilizing AI to enhance the value of conversations. They are seeking an experienced Security Engineer to secure cloud infrastructure and systems behind their products, focusing on designing security controls, improving response capabilities, and collaborating with engineering teams.
Responsibilities:
- Design and implement secure cloud architectures and guardrails across our environments (network segmentation, encryption, key management, secure service patterns)
- Own IAM security: access controls, least-privilege policies, privileged access workflows, and recurring access reviews
- Build and scale cloud security infrastructure (logging, monitoring, alerting, vulnerability management, and DLP controls where appropriate)
- Harden CI/CD and infrastructure-as-code with security automation (secrets detection, dependency scanning, IaC scanning, policy-as-code)
- Monitor cloud security signals and investigate security alerts; continuously improve detection quality and reduce noise
- Lead incident response for cloud security events and help mature playbooks, forensics readiness, and response processes
- Conduct cloud security assessments and threat modeling for new architectures and high-impact changes; partner with Engineering to drive remediation
- Support compliance requirements and security controls aligned to enterprise needs (e.g., HIPAA, PCI-DSS, GDPR; and security frameworks such as NIST / ISO 27001)
- Build security tooling and automations in code to improve prevention, detection, response, and developer guardrails across cloud and application environments
- Write and maintain scripts, services, and integrations that support security operations, including telemetry pipelines, policy enforcement, and remediation workflows
- Partner with engineers by reviewing code, infrastructure-as-code, and deployment patterns to identify security risks early and drive secure implementation
Requirements:
- 5+ years of experience in cloud security engineering or closely related security engineering roles
- Strong knowledge of cloud security architectures, controls, and compliance requirements
- Expertise securing public cloud platforms (e.g., AWS, Azure), including multi-cloud networking considerations and designing cloud-agnostic patterns where needed
- Solid understanding of container security, network security, and cloud security services
- Experience building and operating core security capabilities such as logging/monitoring, vulnerability management, and (bonus) DLP
- Strong understanding of security frameworks such as NIST and ISO 27001
- Excellent problem-solving and analytical skills, plus strong communication and cross-functional collaboration
- Strong software engineering, coding, and scripting skills in languages such as Python, Go, or Bash, with the ability to build production-quality security systems, services, and automation—not just one-off scripts
- Experience developing or reviewing infrastructure-as-code and application code, with the ability to identify security issues and implement practical fixes
- Comfortable using APIs, SDKs, and automation frameworks to integrate security controls into developer workflows, CI/CD systems, and cloud environments
- Bachelor's degree in Computer Science, Cybersecurity, or related field