Cloud Security Engineer

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Develop and enhance security controls within cloud environments, ensuring compliance with industry standards and best practices.

• Oversee identity and access management (IAM), which includes defining roles, policies, Service Control Policies (SCPs), and secure access measures.

• Utilize security posture tools (e.g., Config, Security Hub) for risk monitoring, detection, and remediation.

• Assist in the hardening of cloud infrastructure and Kubernetes (RBAC, network policies, admission controllers).

• Establish and implement image governance, including base images, vulnerability scanners, and CVE policies.

• Engage in audit and compliance processes to ensure conformity with regulations and internal controls.

• Collaborate on the establishment of cloud architecture standards and guardrails with a focus on security.

• Work with the team to formulate risk mitigation strategies (WAR) and respond to security incidents.

• Aid in FinOps initiatives, achieving a balance between security and cost efficiency.

• Automate security measures and processes utilizing Infrastructure as Code (IaC) and CI/CD pipelines.

⛳️ Requirements

• Practical experience with cloud security, preferably in AWS.

• Familiarity with tools such as WAF, CloudTrail, and GuardDuty.

• Understanding of IAM (roles, policies, least privilege, federation).

• Experience with cloud security and compliance tools (Config, Security Hub, or comparable).

• Knowledge of containers and Kubernetes, including security practices (RBAC, network policies).

• Experience with vulnerability scanners and CVE management.

• Proficiency in Infrastructure as Code (Terraform, CloudFormation, or similar).

• Experience with CI/CD processes and integrating security controls within pipelines.

• Strong communication skills and the ability to work effectively with multidisciplinary teams.

🏝️ Benefits

• Fully remote work environment.

• Trust-based culture that emphasizes results, offering numerous challenges and learning opportunities.

• Autonomy and ownership within a collaborative and supportive atmosphere.

• A feedback-oriented culture with regular 1:1s with approachable leadership and no micromanagement.

• Comprehensive benefits package that includes meal/food allowance, childcare support, home office allowance, health coverage, educational and cultural benefits, Gympass, a day off for birthdays, discounts on therapy and English courses, and other partner benefits.