interos.aiRemote
Principal Cloud Application Security Engineer
United States of America
Full Time
1 hour ago
$182,000 - $239,000 USD
No H1B
Key skills
Cloud SecurityAWSAWS Security ServicesDockerKubernetesTerraformInfrastructure as CodeSecurity Controls ImplementationEncryption StandardsIdentity ManagementIncident ResponseCI/CD Pipeline SecurityFedRAMPCISSPCCSPOSCPGIACAWS Solutions Architect ProfessionalAWS DevOps Engineer ProfessionalAWS Security SpecialtyCertified Kubernetes Administrator (CKA)Certified Kubernetes Security Specialist (CKS)AISDLCCI/CDCommunicationCollaboration
About this role
Interos.ai is defining the category of supply chain risk intelligence, building the world’s most trusted and transparent supply chains. As a Principal Cloud Application Security Engineer, you will lead the design and implementation of security solutions to support Interos’ product and cloud strategy, ensuring the secure development, deployment, and operation of applications and cloud services.
Responsibilities:
- Develop and implement comprehensive cloud security strategies aligned with business objectives
- Assess current security practices and recommend improvements, then implement the upgrades
- Oversee AWS architecture and ensure optimal security configurations
- Serve as a subject matter expert on AWS services with an emphasis on security best practices
- Design and implement secure Docker containerization strategies and Kubernetes orchestration
- Ensure security across the development, deployment, and runtime lifecycle of containerized apps
- Utilize Terraform to define and provision secure infrastructure as code
- Build automated security checks into the IaC pipeline
- Implement and manage security controls, encryption standards, and identity management in AWS
- Conduct regular security assessments and audits, mitigating risks proactively
- Partner with Engineering, DevOps, and Product teams to embed security into the SDLC
- Communicate security requirements and best practices to technical and non-technical stakeholders
- Develop and implement incident response plans for cloud environments
- Establish monitoring and alerting systems for timely security detection and response
- Identify posture gaps, prioritize remediation, and lead investigations to root cause when incidents occur
Requirements:
- 12+ years of relevant professional experience in information security, cloud security, or application security
- 5+ years hands-on expertise with AWS, including AWS security services
- 5+ years of experience with Docker and Kubernetes
- 5+ years as a Cloud Security Engineer or Architect in a similar capacity
- 5+ years implementing security controls, encryption, and identity management in cloud environments
- 2+ years of experience with Terraform and IaC principles
- Familiarity with DevOps principles and integrating security into CI/CD pipelines
- Excellent written and verbal communication and collaboration skills
- Bachelor's degree in Computer Science, Computer Engineering, or a related technical field, or equivalent experience
- Knowledge of IL5, FedRAMP, and government cloud security standards
- Certifications such as CISSP, CCSP, OSCP, GIAC
- AWS certifications (Solutions Architect Professional, DevOps Engineer Professional, Security Specialty)
- Kubernetes certifications (CKA, CKS)