Security Engineer – Cloud Application Security

Celara

contract

Posted on: 9/20/2025

Origin: • 🇦🇷 Argentina

Visit company website

✨ AI Apply

Apply

Job Level

JuniorMid-Level

Tech Stack

AWSCloudDockerPythonTerraform

About the role

Implement and enhance secure code review practices with tools like SonarQube and Semgrep
Automate SAST/DAST scanning in CI/CD pipelines for services, APIs, and containers
Manage open-source library risk: SBOM generation, dependency scanning, CVE and license tracking
Partner with developers to remediate findings and embed security into code review and release workflows
Support penetration testing efforts and coordinate remediation of web, API, and business logic vulnerabilities
Work with Cloud Security Posture Management to improve security controls across AWS, including ECS/ECS-Anywhere
Own configuration and optimization of AWS security services (GuardDuty, Security Hub, Config, CloudTrail)
Take ownership of encryption strategies using AWS KMS, certificate management, and secrets management
Secure ECS and ECS-Anywhere container deployments with runtime protection and monitoring
Implement container image scanning and vulnerability management workflows
Design security frameworks for Lambda functions and serverless architectures
Build security automation for container and function lifecycle management
Contribute to the development and security of AI infrastructure (AWS Bedrock, Lambda, agentic frameworks, MCPs)
Implement prompt hardening, secrets protection, and access controls for AI-powered services
Develop security monitoring and response strategies for AI agents and workloads
Ensure application and cloud environments meet SOC 2, PCI, and ISO compliance requirements
Implement automated compliance monitoring, drift detection, and reporting
Design and maintain security baselines and configuration standards
Create compliance evidence collection workflows aligned to developer pipelines

Requirements

Experience securing containerized applications (ECS, Docker) and serverless workloads (Lambda) in AWS
2+ years of hands-on AWS security experience with services like GuardDuty, Security Hub, Config, and CloudTrail
AWS Security Specialty, Solutions Architect Professional, or equivalent certification (or readiness to earn certification)
Experience working in SaaS
Strong knowledge of secure development practices and code review processes
Hands-on experience with SAST/DAST tools (e.g., SonarQube, Sentry, WIZ, Tenable, Snyk, Chainguard, Upwind, Orca)
Experience with dependency and container image scanning (Trivy, Grype) and SBOM generation
Familiarity with penetration testing for web apps, APIs, and business logic vulnerabilities
Experience (or strong interest) in securing AI services such as AWS Bedrock, agentic frameworks, or Model Context Protocol (MCPs)
Understanding of prompt injection risks, model misuse, and secure integration of AI/LLM agents
Ability to design controls for AI data protection, secrets management, and monitoring AI-driven workloads
Proven track record of designing and implementing security architecture from scratch
Experience with Infrastructure as Code (CloudFormation, Terraform) for security automation
Proficiency in scripting (Python, PowerShell, or similar) to build automations and incident response workflows
Strong knowledge of runtime protection and continuous monitoring for containers and cloud services
History of building security controls that scale with rapid business growth and technical debt
Ability to work independently while collaborating effectively with DevOps and product engineering teams
Strong problem-solving mindset with bias for action and continuous improvement
Customer-focused approach to balancing business needs, compliance, and security requirements

Security Engineer – Cloud Application Security

Job Level

Tech Stack

About the role

Requirements

Similar jobs on JobTailor

AVP, Quality Engineering Technical Lead

Senior Product Security Engineer

Data Architect

QA Engineer

DevOps Engineer