Addepar

Staff Cloud Security Engineer

Addepar

full-time

Posted on:

Origin:  • 🇬🇧 United Kingdom

Visit company website
AI Apply
Apply

Job Level

Lead

Tech Stack

AWSCloudKubernetesLinuxPythonTerraform

About the role

  • Maintain and iterate on Addepar’s Swiss AWS environment to enforce data locality restrictions and ensure secure, operational core infrastructure
  • Partner closely with Addepar’s Swiss Infrastructure Operations team to uphold high security standards
  • Design and harden a multi-account AWS environment using Organizations, Control Tower, SCPs, and custom tools/guardrails
  • Design and build secure networking and private resource access patterns for human and programmatic use
  • Author and maintain Terraform code to deploy security infrastructure and contribute to a secure Terraform module registry
  • Write and support CI checks using policy-as-code (OPA) and IaC scanning to enforce best practices at scale
  • Automate vulnerability detection and remediation using native AWS technologies including event-driven architecture and serverless workflows
  • Strengthen identity and secrets management with federation and role design, ABAC, IAM policy reviews, KMS strategy, and use of Secrets Manager and Parameter Store
  • Utilize discovery tools and cloud native logging for investigations, resource discovery, and troubleshooting
  • Participate in infrastructure design reviews and cloud security assessments and produce clear, actionable reports
  • Partner with engineering teams to deliver secure business outcomes and measure impact through coverage, prevention, and response metrics
  • Act as an escalation point for Addepar’s Security Operations Center

Requirements

  • 5+ years in security with 3+ years hands-on building and securing AWS in production, multi-account environments
  • Bachelor’s degree in CS/Engineering or equivalent practical experience
  • Clear written and verbal communication skills with the ability to influence across teams and mentor others
  • Expertise across AWS security best practices with deep knowledge of native AWS services
  • Advanced Terraform experience including module creation, remote execution environments, and integrating security checks into CI
  • Extensive experience with Python and the boto3 library
  • Deep networking knowledge
  • Strong Linux, container, Kubernetes, secrets management, and CI/CD fundamentals
  • Experience with policy-as-code (OPA, Rego), GitOps (GitHub Actions, Argo CD), and Zero Trust solutions
High Tech Genesis

SRE/DevSecOps Engineer

High Tech Genesis
Mid · Seniorcontract🇨🇦 Canada
Posted: 16 days agoSource: hightechgenesiscareers.recruitee.com
AWSJenkinsKubernetesPostgresPythonTerraform
Resolve Tech Solutions

Cloud Architect

Resolve Tech Solutions
Mid · Seniorfull-time🇺🇸 United States
Posted: 37 days agoSource: resolvetech.wd1.myworkdayjobs.com
AWSCloudDockerEC2JenkinsKubernetesPrometheusPythonTerraform
Business Wire

Platform Manager

Business Wire
Senior · Leadfull-time$185k–$195k / year🇺🇸 United States
Posted: 36 days agoSource: jobs.lever.co
AWSCloudEC2GrafanaKubernetesPrometheusTerraform
Agile Six

DevSecOps Engineer

Agile Six
Senior · Leadfull-time$129k–$129k / year🇺🇸 United States
Posted: 21 days agoSource: boards.greenhouse.io
AWSCloudDockerJavaJUnitKubernetesMockitoPythonRubyTerraform
Invoca

Staff Information Security Engineer

Invoca
Leadfull-time$152k–$228k / year🇺🇸 United States
Posted: 14 days agoSource: boards.greenhouse.io
AWSCloudDockerGoogle Cloud PlatformKubernetesPythonSDLCTerraform