Maintain and Operate Secure Cloud Infrastructure: Lead the ongoing maintenance and operation of secure cloud infrastructures, focusing on AWS and cloud-native technologies. Ensure environments are resilient, compliant, and secure through multi-layered protection strategies
Cloud Native Application Protection: Secure applications built for cloud environments by automating security assessments, monitoring runtime environments, and integrating security practices into the development lifecycle. Focus on containers, serverless architectures, and virtual machines, adapting to emerging threats
Cloud Workload and Data Protection: Implement robust security controls for cloud workloads and data, including containers, virtual machines, and serverless architectures. Protect against threats while maintaining performance and scalability, using encryption, data loss prevention, and access controls
Kubernetes and Cloud Security Hardening: Lead security hardening across all cloud security layers, with a focus on Kubernetes clusters and cloud-native environments. Secure container runtimes, implement stringent network policies, manage secrets securely, and ensure resilience against attacks at scale
Collaborate on Secure Platform Solutions: Partner with infrastructure, product security, security engineering, and engineering teams to design and implement secure platform solutions. Provide expertise in developing Infrastructure as Code (IaC), CI/CD pipelines, and deployment processes, ensuring security is integrated throughout the development lifecycle
Automation of Security Operations: Develop and deploy automation solutions to enhance security operations, reduce manual efforts, and ensure consistent security practices. Create reusable templates and modules for secure infrastructure to enable rapid, secure deployments
Security Incident Response: Contribute to incident response efforts, including detection, analysis, containment, and recovery. Work with internal and external stakeholders to minimize the impact of incidents and prevent future occurrences
Compliance, Risk Management, and Data Governance: Ensure cloud infrastructures comply with standards such as SOC 2, HIPAA, and HITRUST. Implement automated compliance checks, data governance practices, and reporting to maintain alignment with these frameworks and protect data integrity
Technical Leadership and Mentorship: Act as a technical leader and mentor, promoting a security-first mindset. Guide best practices in cloud security and data protection, and integrate secure practices into the organization’s culture and processes

Requirements

7+ years of experience in cloud security engineering and architecture, with advanced expertise in AWS, Azure, or Google Cloud Platform
Deep understanding of cloud security principles and best practices, with proven experience in implementing and managing cloud-native security tools at scale
Extensive knowledge of fundamental security technologies, including firewalls, IDS/IPS, endpoint protection, IAM, encryption, and DLP
Expertise with key tooling: Cloud Security Posture Management (CSPM), Cloud Native Application Protection Platforms (CNAPPs), Cloud Workload Protection Platforms (CWPPs) and Data Security Posture Management (DSPM)
Expertise in securing and hardening cloud workloads, including containers, serverless architectures, and virtual machines, with a track record of enhancing security posture
Advanced experience with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, and Pulumi, and expertise in integrating security into CI/CD pipelines
High proficiency in programming or scripting languages for developing complex security automation solutions
Comprehensive understanding of cloud and network security, with experience in securing cloud architecture across multiple environments
Demonstrated ability to perform in-depth security reviews of SaaS product architecture and its supporting infrastructure, with a focus on driving improvements
Familiarity with and ability to implement compliance standards HIPAA, HITRUST, CIS, NIST 800-53 and others with a low-touch approach
Strong leadership and communication skills, with a proven track record of collaborating with cross-functional teams, including product teams and developers, to drive a security-first culture, effect change across the organization and further the cloud security roadmap

Benefits

Full medical, dental, and vision insurance + OneMedical membership
Healthcare and Dependent Care FSA
401(k) with company match
Flexible PTO
Wellbeing + Learning & Growth reimbursements
Paid parental leave + Fertility benefits
Pet insurance
Student loan refinancing
Virtual resources for mindfulness, counseling, and fitness

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cloud security engineeringAWSAzureGoogle Cloud PlatformInfrastructure as CodeTerraformCloudFormationPulumisecurity automationcloud-native security tools

Soft Skills

technical leadershipmentorshipcollaborationcommunicationsecurity-first mindsetcross-functional teamworkproblem-solvingchange managementdriving improvementsstakeholder engagement

Certifications

SOC 2HIPAAHITRUSTCISNIST 800-53