FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Tech Stack
Tools & technologiesAndroidAWSAzureCloudGoogle Cloud PlatformiOSJenkinsKubernetesPythonTerraform
About the role
Key responsibilities & impact- Architect, implement, and continuously improve secure-by-design controls across multi-cloud environments (AWS, Azure, GCP)
- Develop and enforce Infrastructure as Code and policy-as-code guardrails (Terraform, CloudFormation, ARM, OPA, Sentinel, Azure Policy, AWS SCPs)
- Design and maintain security controls within CI/CD pipelines, integrating SAST, DAST, SCA, container and IaC scanning
- Lead threat modeling (STRIDE, MITRE ATT&CK), architecture reviews, and security design/code reviews to mitigate risk prior to deployment
- Define and promote secure coding standards for backend APIs, mobile applications, and AI-powered services
- Enforce and audit enterprise IAM and Zero Trust principles (RBAC, PAM, SSO, MFA, OAuth/OIDC, SAML)
- Own the vulnerability management lifecycle, including asset discovery, continuous scanning, risk-based prioritization, risk register reporting
- Integrate application and cloud telemetry into SIEM/SOAR platforms; define detection standards
- Develop and maintain incident response playbooks, tabletop exercises, and cloud/pipeline-specific runbooks
- Partner with Cloud Engineering teams to secure infrastructure and services.
Requirements
What you’ll need- 5+ years of hands-on experience in security engineering, with at least 3 years focused on cloud infrastructure security (AWS, Azure, and/or GCP)
- Experience integrating security tooling into CI/CD platforms (GitHub Actions, Azure DevOps, GitLab CI, Jenkins, etc.)
- Experience securing AI/ML infrastructure, including model APIs, data pipelines, vector databases, and inference endpoints
- Experience with AI technologies, ability to monitor LLM usage, audit model access controls, etc
- Strong experience with IaC tools (Terraform, CloudFormation, ARM)
- Familiarity with container security and Kubernetes environments
- Experience with SAST, DAST, SCA, and dependency scanning tools
- Proficiency in Python or equivalent scripting language
- Strong knowledge of IAM, encryption, OAuth/OIDC, RBAC, and secure cloud architecture principles
- Understanding of compliance & security frameworks (SOC 2, ISO 27001, NIST)
- Exposure to mobile application security on native iOS and/or Android platforms, including API security, token management, and mobile threat defense.
Benefits
Comp & perks- Ability to work flexible and/or extended hours as needed to accommodate members and team members in multiple time zones
- Willingness and ability to travel, domestically and internationally, without restrictions, approximately 5-10% per year
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Infrastructure as CodeTerraformCloudFormationARMSASTDASTSCAPythonKubernetesAI/ML infrastructure
Soft Skills
leadershipcommunicationrisk managementcollaborationproblem-solving
Certifications
SOC 2ISO 27001NIST