Senior Cloud Security Engineer

Senior Cloud Security Engineer

We are seeking an experienced Senior Cloud Security Engineer to shape the security foundation of our modern cloud environments and next-generation applications.

Responsibilities

• DevSecOps and Automation Pipeline Integration: Integrate robust security controls directly into CI/CD platforms such as GitHub, GitLab, Jenkins, or Azure DevOps.
• Automated Scanning: Evaluate and implement pipeline-based security Infrastructure as Code (IaC) scanning.
• Manage and configure IaC scanning tools to surface true risk.
• Developer Feedback Loops: Build and optimize developer feedback loops and automated remediation workflows to ensure software is secure by default.
• Develop automated scripts using Python, Bash, or PowerShell to streamline security processes.

Identity and Access Management

• Cloud Identity Controls: Build and maintain IAM security controls across cloud platforms, assessing policies to enforce the principle of least privilege.
• Non-Human Identity Management: Standardize management, security controls, and lifecycle expectations with regard to non-human identity.
• Secrets Management: Govern the secure use of cloud identities, Application Programming Interfaces (APIs), and secrets management.

Infrastructure Security and Hardening

• Cloud Posture: Develop and implement secure infrastructure baselines, vulnerability management processes, and hardening standards across AWS, Azure, or GCP environments.
• Infrastructure as Code (IaC): Validate security configurations and leverage IaC tools like Terraform, CloudFormation, or Bicep to ensure repeatable, auditable, and secure infrastructure provisioning.
• Network Security: Tackle high-impact infrastructure projects such as multi-cloud network isolation, secure multi-tenant use, and continuous remediation of discovered misconfigurations.

Workload Security

• Cloud-Native Architectures: Guide engineering teams on secure architecture design for cloud apps, microservices, serverless services, and PaaS workloads.
• Container Security: Advance container and Kubernetes security by implementing runtime controls, supply-chain security, and configuration assessments.
• AI & Emerging Tech: Secure emerging technologies and guide the organization on secure implementation and use.