Senior Infrastructure Engineer, Cloud Security

📋 Description

• Developing our AWS account strategy, VPC architecture, and workload segmentation as our infrastructure expands.

• Managing our firewalls and edge security approach across our cloud environment.

• Improving our Infrastructure as Code (IaC) security scanning, governance of Terraform modules, and pipeline security for our deployment processes.

• Taking charge of and advancing our vulnerability management, misconfiguration detection, and Security Information and Event Management (SIEM) strategy.

• Establishing the security standards for our AI products and AI-related developer tools in collaboration with product teams, InfoSec, and IT.

• Participating in daily Cloud Infrastructure tasks alongside your security expertise, including Terraform reviews, platform backlog maintenance, and on-call responsibilities.

⛳️ Requirements

• Over 6 years of practical experience in cloud engineering, with significant focus on cloud security in production environments—covering IAM, network architecture, blast-radius reduction, and vulnerability management.

• Proficient in writing production Terraform and experienced in creating custom IaC security scanning rules, pinning module versions, and securing CI/CD pipelines.

• Extensive experience with at least one major cloud provider (preferably AWS, acceptable GCP), including account strategy, network design, and least-privilege IAM principles.

• Approaching detection as a product, with experience in streamlining vulnerability and misconfiguration initiatives where tooling created more noise than useful insights.

• Knowledgeable about various SIEM methods—vendor-hosted, self-operated, or hybrid—and capable of making informed decisions tailored to an organization's size and risk appetite.

• Advocating for secure defaults and standardized practices over restrictive gates and approvals; aiming for low-friction compliance is key.

• Understanding the security ramifications of large language models (LLMs), agents, and AI-driven developer tools, and being able to establish appropriate standards for their safe integration.

• Collaborating effectively within a Cloud Infrastructure team and engaging productively with InfoSec, IT, and overarching company security functions.

🏝️ Benefits

• Health, Dental & Vision Plans

• Competitive Pay

• 401k Matching

• Unlimited PTO

• Daily lunch (in-office only)

• Snacks & Coffee (in-office only)

• Commuter benefits (in-office only)