Sr. Cloud Security Engineer

Sr. Cloud Security Engineer

Requirements

• 5+ years in security engineering with a strong application and cloud security background.
• Deep understanding of secure development practices and integrating security into the Software Development Life Cycle (SDLC).
• In-depth knowledge of OWASP Top 10, CWE, and secure web practices.
• Hands-on experience with Code scanning tools: CodeQL, SAST/DAST, dependency scanners.
• CI/CD tooling: GitHub Actions, Jenkins, or similar.
• SIEM: Implementation and log ingestion (e.g., Splunk, ELK, or equivalent).
• Cloud security: AWS preferred; experience with IAM, VPCs, KMS, and other AWS services.
• Proven experience designing and implementing Zero Trust architectures and working with SASE platforms (e.g., Zscaler, Netskope, or Prisma Access).
• Strong experience with DLP solutions across endpoints, cloud, and messaging platforms.
• Strong grasp of networking protocols, TLS, DNS, HTTP, and web application architectures.
• Strong experience with both Linux and Windows environments.
• Experience with email security (e.g., DMARC, SPF, DKIM, phishing detection).
• Ability to create and maintain technical documentation, SOPs, playbooks, and automation scripts.
• Proficiency in scripting or programming languages (Python, Bash, JS, etc.).
• Familiarity with bug bounty platforms or responsible disclosure programs.
• Experience with security frameworks like Zero Trust, NIST 800-207, or ISO 27001.
• Infrastructure as Code: Terraform (primary), CloudFormation or others.
• Comfortable with on-call rotations.
• Containers and orchestration: Docker, Kubernetes, including RBAC, pod security policies, etc.
• Serverless architectures: AWS Lambda or similar.

Responsibilities

• Lead secure software development lifecycle (SDLC) practices across engineering teams.
• Design, implement, and maintain secure CI/CD pipelines, integrating tools for SAST, DAST, and dependency scanning (e.g., CodeQL, GitHub Advanced Security).
• Configure and maintain security in source control systems, preferably GitHub.
• Develop, maintain, and monitor security controls across cloud environments, with a strong preference for AWS.
• Configure and manage security logging and monitoring solutions, particularly SIEM tools.
• Guide secure infrastructure using Terraform and other Infrastructure-as-Code (IaC) tools.
• Ensure security in serverless environments and API-based architectures.
• Implement and support Zero Trust Network Architecture, working with SASE platforms and identity-based access controls.
• Deploy and manage DLP (Data Loss Prevention) strategies across cloud services, endpoints, and email.
• Build and maintain Standard Operating Procedures (SOPs) and engineering documentation, including internal guides, playbooks, and runbooks.
• Identify security gaps in systems, workflows, or architecture and develop actionable solutions to address them.
• Perform security investigations and respond to alerts; fine-tune detection rules to reduce false positives and increase detection accuracy.
• Build and implement automation to streamline and optimize repetitive security tasks and incident response procedures.
• Conduct threat modeling, risk assessments, and vulnerability management activities.
• Lead incident response and forensic investigations on both Windows and Linux systems.
• Work collaboratively with IT, DevOps, and engineering teams to drive security best practices.
• Guide and mentor junior team members, fostering a knowledge-sharing culture.
• Educate developers and engineers on OWASP Top 10 and secure coding standards.
• Stay current with evolving threats, tools, and techniques in cybersecurity and cloud computing.

Preferred Qualifications

• Experience with AWS preferred; experience with IAM, VPCs, KMS, and other AWS services.
• Experience with security frameworks like Zero Trust, NIST 800-207, or ISO 27001.