Sr. Cloud Security Engineer

<p>We are seeking a highly skilled <strong>Sr. Cloud Security Engineer</strong> to join our Security Operations and Engineering team. In this role, you will be a key player in designing, implementing, and maintaining a robust security posture across our multi-cloud environment.</p> <p>While your primary expertise should lie in <strong>Google Cloud Platform (GCP)</strong> or <strong>Microsoft Azure</strong>, you will also leverage your experience in <strong>Amazon Web Services (AWS)</strong> to ensure consistent security standards across our entire infrastructure. You will be instrumental in automating security controls, conducting deep-dive architectural reviews, and managing our Cloud Security Posture Management (CSPM) lifecycle.</p> <h4><strong>What You'll Do</strong></h4> <ul> <li><strong>Cloud Security Architecture Design:</strong> Lead and participate in security reviews for new product features and infrastructure changes. Provide actionable recommendations to engineering teams to ensure "secure by design" principles.</li> <li><strong>Posture Management (CSPM):</strong> Own the end-to-end CSPM process. This includes configuring tools, monitoring for misconfigurations, prioritizing risks, and working with stakeholders to remediate security gaps across GCP, Azure, and AWS.</li> <li><strong>Security Automation:</strong> Utilize basic programming and scripting skills (e.g., Python, Go, or Bash) to automate repetitive security tasks, incident response playbooks, and compliance checks.</li> <li><strong>Infrastructure as Code (IaC) Security:</strong> Integrate security scanning into CI/CD pipelines (Terraform, Pulumi, or Bicep) to catch vulnerabilities before they reach production and also write IAC code for security related infrastructure. </li> <li><strong>Identity Access Management (IAM):</strong> Design and enforce least-privilege access models across multi-cloud environments, managing service accounts, roles, and identity federation.</li> <li><strong>Incident Response Support:</strong> Act as a subject matter expert during cloud-related security incidents, providing technical analysis and forensic support.</li> </ul> <h4><strong>What We're Looking For</strong></h4> <ul> <li><strong>Deep Cloud Expertise:</strong> 5+ years of experience in cloud security, with <strong>extensive, hands-on experience</strong> in either <strong>GCP</strong> (Security Command Center, IAM, VPC Service Controls) or <strong>Azure</strong> (Microsoft Defender for Cloud, Azure Policy, Sentinel).</li> <li><strong>Multi-Cloud Proficiency:</strong> Strong working knowledge of <strong>AWS</strong> security services (GuardDuty, IAM, Security Hub, Config).</li> <li><strong>CSPM Experience:</strong> Proven track record of managing Cloud Security Posture Management tools (e.g., Wiz, Orca, Prisma Cloud, or native cloud tools) to reduce the attack surface.</li> <li><strong>Programming Skills:</strong> Ability to write scripts or small applications in <strong>Python, Go, or PowerShell</strong> to interact with Cloud APIs, automate workflows, and maintain security related IAC code.</li> <li><strong>Security Reviews:</strong> Experience performing threat modeling and security architecture reviews for complex, distributed systems.</li> <li>Relevant certifications such as <strong>Google Professional Cloud Security Engineer</strong>, <strong>Microsoft Certified: Azure Security Engineer Associate (AZ-500)</strong>, or <strong>AWS Certified Security – Specialty</strong> would be great plus </li> <li>Experience with container security (Kubernetes/GKE/AKS/EKS).</li> <li>Familiarity with compliance frameworks such as PCI DSS,SOC2, ISO 27001, or NIST.</li> <li>Excellent communication skills with the ability to translate complex security risks into business context for non-technical stakeholders.</li> </ul>