Cloud Security & Compliance Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Engineering, or a related field—or equivalent practical experience in technical security.
• Strong hands-on experience securing AWS and GCP infrastructure (e.g., API Gateway, Identity, Networking, Encryption, and Logging).
• Deep understanding of technical controls for SOC 2 and GDPR.
• Deep understanding of backend APIs, and RESTful services from a Zero Trust and data protection perspective.
• Proven ability to design and implement security frameworks in ambiguous or rapidly evolving environments, building scalable processes and guardrails where none previously existed.
• Strong problem-solving skills and the ability to work cross-functionally to align security goals with developer velocity.
• Comfortable reading and navigating modern codebases (e.g., TypeScript/JavaScript or Python) to conduct security reviews and understand application logic.
• Recent experience working on AI Applications, with an understanding of privacy concerns and security risks specific to LLMs.
• Excellent interpersonal and communication skills; able to lead high-stakes technical deep-dives with enterprise partners and negotiate security standards across teams using a collaborative, "solution-first" approach.

Nice To Haves

• Experience using Infrastructure as Code to build and manage secure environments (e.g., Terraform or CloudFormation/CDK).
• Experience using AI Tools (Claude Code, GitHub Copilot, etc.) to automate security policy generation and workflow audits.

Responsibilities

• Develop, test, and maintain scalable security guardrails to ensure a consistent, secure-by-default posture across our AWS and GCP environments.
• Navigate the human side of security by acting as a collaborative partner to our engineering teams; you will identify missing standards, negotiate solutions, and proactively suggest "the secure way" to build features rather than acting as a gatekeeper.
• Partner with our customers' security teams to align our architecture with their specific security patterns and represent Mobi’s robust security posture during technical deep-dives and reviews.
• Translate high-level security patterns and compliance frameworks (SOC 2 and GDPR) into high-quality, hardened infrastructure code and automated evidence collection.
• Review system designs to troubleshoot vulnerabilities, debug misconfigurations, and resolve architectural security gaps before they reach production.
• Own the security lifecycle—from initial threat modeling and customer alignment through to automated testing, shipping, and audit-ready reporting.
• Implement best practices for code quality, secret management, and maintainable security patterns across the entire engineering organization.
• Stay current with cloud-native security trends, multi-cloud vulnerabilities, and emerging AI-driven security technologies to proactively protect our AI-powered solutions.

Benefits

• Competitive Base Salary + Annual Bonus
• Comprehensive Health Insurance (Medical, Dental, and Vision) for you and your family, covered mostly by the company.
• Company-paid Disability and Life Insurance
• Optional Pet Insurance and Identity Theft Protection
• Paid Parental Leave (for all types of parents and families)
• Equity ownership in the company
• 401k Plan
• Unlimited Paid Time Off + $1,000 Bonus for taking five consecutive days off
• Flexibility to work anywhere in the world for one month a year
• Tuition Reimbursement
• Cell Phone & Transportation Reimbursement
• Lunch daily from local restaurants
• Cozy office environment with a full kitchen, massage chairs, live plants, and much more!