Webflow

Senior Security Engineer, Cloud Security

Webflow

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇦🇷 Argentina

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloudFirewallsGoKubernetesPythonTerraform

About the role

  • Lead and execute cloud security initiatives that strengthen Webflow’s infrastructure and operational security posture. Responsibilities are grouped by scope and impact.
  • Design, implement, and maintain secure AWS infrastructure following best practices (least privilege, network segmentation, encryption, monitoring).
  • Partner with infrastructure and platform teams to embed security controls in CI/CD pipelines, infrastructure as code, and containerized environments.
  • Own the cloud security posture management (CSPM) strategy, ensuring continuous compliance and automated detection of misconfigurations.
  • Evaluate and deploy security tooling for cloud visibility, IAM governance, and intrusion detection.
  • Collaborate with engineering teams to secure Kubernetes and containerized workloads, ensuring adherence to runtime and image scanning policies.
  • Respond to and investigate cloud-related security incidents, providing technical expertise during triage and remediation.
  • Contribute to the design and execution of Webflow’s cloud security roadmap, identifying areas for automation and scalability.
  • Conduct threat modeling and risk assessments for cloud architecture and new service deployments.
  • Develop internal tools and scripts to enhance cloud monitoring and detection capabilities.
  • Stay current with evolving AWS services, vulnerabilities, and security trends — proactively identifying opportunities to enhance Webflow’s defenses.

Requirements

  • 5+ years of experience in cloud security, infrastructure engineering, or DevSecOps (with at least 3 years focused on AWS).
  • Demonstrate strong knowledge of AWS services and security controls
  • Have hands-on experience securing Kubernetes and containerized workloads.
  • Are proficient with infrastructure as code (Pulumi, Terraform, CloudFormation)
  • Understand network security concepts including firewalls, segmentation, and zero trust.
  • Can script or automate security tasks using Python, Go, or Bash.
  • Communicate clearly and collaborate effectively across security, DevOps, and product teams.
  • Bring a proactive, builder’s mindset — identifying and closing gaps before they become issues.
Benefits
  • Equity ownership (RSUs) in a growing, privately-owned company
  • 100% employer-paid healthcare, vision, and dental insurance coverage for full-time employees (working 30+ hours per week) and their dependents. Full-time employees may also be eligible for voluntary insurance options where applicable in the respective country of employment
  • 12 weeks of paid parental leave for both birthing and non-birthing caregivers, as well as an additional 6-8 weeks of pregnancy disability leave for birthing parents to be used before child bonding leave (note: where local requirements are more generous, employees receive the greater benefit); full-time employees also have access to family planning care and reimbursement
  • Flexible PTO for all locations and sabbatical program
  • Access to mental wellness and professional coaching, therapy, and Employee Assistance Program
  • Monthly stipends to support work and wellness
  • 401k plan or pension schemes (in countries where statutorily required), and other financial wellness benefits, like CPA and financial advisor coverage

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
cloud securityAWSKubernetesinfrastructure as codePulumiTerraformCloudFormationnetwork securityPythonGo
Soft skills
communicationcollaborationproactive mindsetproblem-solving