Staff Cloud Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Develop and advance the cloud security strategy, architecture standards, and technical roadmaps in cloud and AI-enabled settings.

• Oversee the design and execution of preventive security measures, utilizing automation and AI-driven functions to minimize risk and enhance detection and response.

• Design and secure intricate multi-cloud and hybrid infrastructures across AWS, Azure, GCP, and on-premise systems.

• Establish and apply security architectures for AI/ML workloads, including model pipelines, data protection, and AI-integrated applications.

• Identify and implement measures to mitigate AI-specific threats such as prompt injection, data poisoning, model leakage, and adversarial inputs.

• Shape security and engineering practices across various teams and departments, promoting the adoption of secure-by-design principles.

• Take ownership of the security outcomes for significant cloud and AI initiatives, ensuring successful execution and measurable risk reduction.

• Develop and enhance DevSecOps and Infrastructure-as-Code (IaC) security standards, incorporating security controls into CI/CD pipelines at scale.

• Propel the adoption and refinement of CNAPP platforms and related tools to enhance risk visibility and remediation across cloud, container, and AI environments.

• Create and implement security architecture for containerized platforms (Kubernetes/EKS/GKE/AKS), including cluster hardening, workload isolation, image supply chain security, and runtime protection controls.

• Lead the advancement of detection and response capabilities, merging cloud telemetry, Cloud EDR, and advanced security analytics.

• Conduct and guide threat modeling and risk assessments (Attack Surface Management, Data Security Posture Management, etc.) for complex cloud-native and AI-enabled systems.

• Design and deliver automation frameworks and security services to enhance scalability and operational efficiency.

• Provide technical leadership and mentorship to engineers, shaping department-level objectives and technical direction.

⛳️ Requirements

• Bachelor’s degree or equivalent in Computer Science, Information Security, or a related discipline.

• Demonstrated experience in defining and securing large-scale cloud and hybrid architectures (AWS, Azure, GCP, On-Premise).

• Profound expertise in cloud security architecture, encompassing IAM, network segmentation, encryption, and secure design patterns.

• Strong programming and automation skills, with the capability to design and scale security engineering solutions.

• Extensive experience in implementing DevSecOps practices and securing Infrastructure-as-Code (IaC) workflows.

• Expertise in container technologies (Kubernetes, Docker, EKS, GKE, AKS).

• In-depth understanding of security risks inherent in AI/ML systems, including prompt injection, data poisoning, model leakage, and adversarial inputs.

• Experience in leading the implementation and adoption of CNAPP platforms.

• Solid background in security prevention, detection, and response strategies.

🏝️ Benefits

• Medical, dental, and vision insurance.

• Matching 401(k).

• Paid time off.

• Wellness program.

• Employee discounts for Sony products.

• Eligible for a bonus package.