Senior Product Security Engineer, Cloud

MongoDB is seeking a Senior Product Security Engineer to drive cloud security initiatives for MongoDB Atlas and the cloud platforms that power it across AWS, GCP, and Azure. You’ll be a senior individual contributor in the MongoDB Product Security organization, a diverse team responsible for the security of all customer‑facing products, including Atlas, self‑managed/server, and a broad ecosystem of related services and tools. Within Product Security, the Cloud Security team focuses specifically on Atlas control plane and data plane environments and the underlying cloud platforms, partnering closely with Atlas engineering, SRE, other security engineering teams, and global security operations to build and defend secure‑by‑default, large‑scale, multi‑tenant cloud services. We are looking to speak to candidates who are based in Dublin for our hybrid working model. Requirements ~7+ years of experience in application, product, and/or cloud security for large-scale, customer-facing systems, ideally in a multi-cloud or SaaS environment Strong, hands-on experience with cloud security architecture on at least one major cloud provider (AWS, GCP, or Azure), with familiarity across: VPC/networking (segmentation, egress controls, private connectivity) IAM (roles, policies, workload identity, cross-account access) Keys and secrets (KMS, HSMs, secret management systems) Container/orchestration security (e.g., Kubernetes, ECS, serverless) Multi-tenant control planes and blast-radius reduction patterns. Solid security architecture fundamentals: able to design and review end-to-end systems, reason about threat models and risk trade-offs, and recommend appropriate controls across application, data, and infrastructure layers Ability to read and reason about code (e.g., Go, Java, or similar languages) and familiarity with IaC (Terraform/CloudFormation), CI/CD, and security automation tooling (e.g., CSPM, IaC scanning, SAST, SCA) Demonstrated experience leading security reviews and projects in partnership with engineering teams (e.g., threat modeling, design reviews, targeted testing) and turning findings into pragmatic, prioritized remediation work Excellent written and verbal communication skills; you can explain complex cloud and product security issues in a way that builds trust with engineers, leaders, and, when needed, customers A strong sense of ownership and follow-through, paired with a collaborative working style--you bring others along, create space for their input, and offer specific, actionable feedback In this role you will… Co-own and drive Atlas cloud security initiatives such as control plane hardening, cloud security baselines, identity and access patterns, customer account protections, and data-plane protections for multi-tenant environments Perform and lead security reviews for Atlas features and platform changes in cloud environments, including architecture review, threat modeling, and targeted testing, with an emphasis on pragmatic, actionable guidance Design and review cloud architectures across AWS, GCP, and Azure--covering networking, IAM, secrets management, and service-to-service access--and help define secure reference architectures that can be reused by Atlas teams Embed security into platforms and guardrails by working with platform, SRE, and other security engineering teams to implement policies and automation (e.g., policy-as-code, secure defaults, pre-deployment checks) that make the secure path the easiest path for developers Use CSPM, infrastructure vulnerability data, and IaC scanning to identify meaningful posture gaps in Atlas environments and drive concrete hardening work with clear ownership, coverage, and success metrics Partner with Detection Response, SRE, and other security teams to bring product and cloud context to incidents, threat hunts, and posture investigations, and to design new detections tied to Atlas and its cloud footprint Influence roadmaps and priorities by translating ... (truncated, view full listing at source)