Key skills
Cloud security engineeringAWSGCPAzureInfrastructure as Code (Terraform)Cloud Security Posture Management (CSPM)Security InformationEvent Management (SIEM)PythonGoSecurity automationCompliance frameworks SOC 2Compliance frameworks ISO 27001Compliance frameworks HIPAACompliance frameworks PCICISSPAWS Security certificationGCP Security certificationTerraformCloud Security
About this role
OnBoard is seeking a Senior Cloud Security Engineer to design and operate security controls across their cloud environments. This role combines deep cloud expertise with security engineering, focusing on building defensive architectures and responding to incidents.
Responsibilities:
- Design and implement cloud security controls across AWS, GCP, or Azure
- Build and maintain detection, alerting, and incident response capabilities
- Lead threat modeling and security reviews for new architectures
- Implement and operate IaC security, secrets management, and identity controls
- Respond to incidents and lead post-incident reviews
- Partner with engineering on shift-left security practices
Requirements:
- 5+ years in security engineering with strong cloud focus
- Deep expertise in at least one major cloud (AWS, GCP, Azure)
- Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms
- Strong scripting skills (Python, Go) and security automation experience
- Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI)
- Industry certifications (CISSP, AWS Security, GCP Security) are a plus