Principal Cloud Application Security Engineer

About Interos

Interos is the supply chain risk intelligence company – building the most trusted and transparent supply chains in the world. Our pioneering discovery and monitoring intelligence spans the lifecycle of supply chain risk, enabling faster and more informed threat mitigation. As the world’s first, and only, automated supplier intelligence platform, we continuously map and monitor extended supply chains at speed and scale to protect organizations from regulatory fines, unethical labor, cyber-attacks, and other systemic vulnerabilities. Interos serves a variety of commercial, government, and public sector customers around the world including a host of Global Fortune 500 companies and members of the Five Eyes nations. www.interos.ai

About the Role

As a Principal Cloud Application Security Engineer, you will lead the design and implementation of security solutions to support Interos’ product and cloud strategy. Your primary mission is to enable business growth by ensuring the secure development, deployment, and operation of Interos applications and cloud services. You will secure cloud infrastructure, platforms, and software while working closely with Technology, Engineering, and Product teams to install, maintain, and optimize our cloud environments. This is a hands-on role for someone who goes beyond advisory work — you will architect, implement, and champion security solutions that shape our next phase of scale.

What You’ll Do

• **Cloud Security Strategy**: Develop and implement comprehensive cloud security strategies aligned with business objectives. Assess current security practices and recommend improvements, then implement the upgrades.
• **AWS Expertise**: Oversee AWS architecture and ensure optimal security configurations. Serve as a subject matter expert on AWS services with an emphasis on security best practices.
• **Containerization & Orchestration**: Design and implement secure Docker containerization strategies and Kubernetes orchestration. Ensure security across the development, deployment, and runtime lifecycle of containerized apps.
• **Infrastructure as Code (IaC)**: Utilize Terraform to define and provision secure infrastructure as code. Build automated security checks into the IaC pipeline.
• **Security Controls Implementation**: Implement and manage security controls, encryption standards, and identity management in AWS. Conduct regular security assessments and audits.