Senior Cloud Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Deliver proactive cloud security capabilities that focus on preventive models to combat modern threats, particularly those stemming from AI-driven attack strategies.

• Expand into advanced security areas such as AI/ML security, container security, and enhanced threat detection and response.

• Design and implement cloud security measures that minimize risk and enhance prevention, detection, and response capabilities.

• Aid in securing multi-cloud and hybrid infrastructures across AWS, Azure, GCP, and on-premise systems.

• Establish security controls for AI/ML workloads, safeguarding data pipelines, model services, and AI-integrated applications.

• Recognize and assist in mitigating AI-specific risks like prompt injection, data poisoning, and model/data leakage.

• Employ DevSecOps and Infrastructure-as-Code (IaC) methodologies to weave security into CI/CD pipelines.

• Collaborate with product and platform teams to adopt secure architecture patterns and cloud security standards.

• Leverage CNAPP platforms and associated tools to pinpoint and address risks across cloud, container, and AI environments.

• Set up and uphold security controls for containerized settings, which include Kubernetes cluster configuration, image scanning, and runtime protection.

• Enhance monitoring, detection, and response capabilities, integrating with cloud-native telemetry and security tools.

• Engage in threat modeling and risk assessments (Attack Surface Management, Data Security Posture Management, etc.) for cloud-native and AI-empowered systems.

• Create and maintain automation solutions to boost security coverage and operational efficiency.

• Deploy and manage infrastructure utilizing Infrastructure-as-Code (IaC) tools and best practices.

• Contribute to security initiatives and projects that yield measurable enhancements to the organization’s security posture.

• Assist in security operations and internal service requests, fostering ongoing process improvement.

⛳️ Requirements

• Bachelor’s degree or equivalent in Computer Science, Information Security, or a related field.

• Proven experience in designing and securing cloud and hybrid environments (AWS, Azure, GCP, On-Premise).

• Proficient in one or more programming or scripting languages, with experience in interacting with cloud APIs and automation workflows.

• Strong grasp of cloud security fundamentals, including IAM, network security, encryption, and secure architecture design.

• Hands-on experience implementing DevSecOps practices and securing Infrastructure-as-Code (IaC) workflows.

• Skilled in deploying and securing container technologies (Kubernetes, Docker, EKS, GKE, AKS).

• Knowledge of security risks associated with AI/ML systems, including prompt injection, data poisoning, and model/data leakage.

• Familiarity with data security principles in AI training and inference pipelines.

• Experience in implementing essential security controls, logging, and monitoring for AI-enabled services.

• Awareness of AI security frameworks such as OWASP Top 10 for LLMs and NIST AI Risk Management Framework.

• Experience utilizing CNAPP platforms to identify and rectify cloud security vulnerabilities.

• Understanding of IaC scanning, cloud security posture management, and runtime detection tools.

• Knowledge of security prevention, detection, and response strategies.

• Experience in developing and securing scalable cloud architectures across application, network, and data layers.

• Familiarity with serverless and event-driven architectures (e.g., AWS Lambda, GCP Cloud Functions, Azure Automation).

• Relevant certifications (e.g., AWS, Azure, GCP, Security+) are advantageous.

• Experience working in multi-OS and distributed environments.

🏝️ Benefits

• Medical

• Dental

• Vision

• Matching 401(k)

• Paid time off

• Wellness program

• Desirable employee discounts on Sony products

• Eligibility for a bonus package