Cloud Security Engineer

BRINCSeattle, WA
Hybrid
Match Resume

About The Position

At BRINC, we are redefining public safety with an innovative ecosystem of life-saving tools. Our journey started with the development of drones and ruggedized throw phones, designed to access unsafe areas and establish communication to de-escalate situations. Today, we've expanded into creating and deploying 911 response networks, where drones are dispatched to 911 calls to provide real-time visual data, enhancing safety and enabling de-escalation-focused responses. Our cutting-edge solutions are utilized by over 600 public safety agencies across America and the company has raised over $150M from investors, including Index Ventures, Motorola Solutions, Sam Altman, Dylan Field, Mike Volpe, Alexandr Wang and more. At BRINC, we are committed to recruiting the world's best talent to join us in our mission to support first responders in saving lives. We are seeking a Cloud & Security Engineer to own and mature the security posture of BRINC's AWS environment and corporate infrastructure. This is a hands-on, high-ownership role for a strong individual contributor who thrives on building — someone who wants to shape how security is done at a growing company, not maintain what someone else already built. You will be the primary security practitioner at Brinc, responsible for turning passive AWS tooling into active threat detection, strengthening our SOC 2 program, and scaling our security posture alongside the business. From tuning GuardDuty and locking down IAM to implementing Google Workspace DLP and authoring the policies that govern how we protect data — this role spans cloud and corporate security with meaningful impact across both. You'll work closely with our IT Support, Network Engineering, and Engineering leadership.

Requirements

  • 5–8 years of security engineering experience with a strong AWS focus
  • Hands-on experience with AWS security services - GuardDuty, Security Hub, CloudTrail, Config, IAM, and Service Control Policies
  • Demonstrated SOC 2 or ISO 27001 readiness experience - ideally as primary technical lead
  • Proficiency in at least one SIEM platform - Splunk, Elastic, Panther, or equivalent
  • Scripting/automation ability in Python or Bash
  • Google Workspace security and administration experience
  • Strong written communication - security policies, runbooks, and executive summaries

Nice To Haves

  • Relevant certifications: AWS Security Specialty, CISSP, CCSP, or CISM
  • Experience with IaC security scanning (Checkov, tfsec) and CI/CD pipeline security integration
  • Familiarity with compliance automation platforms such as Drata or Vanta
  • Experience at a startup scaling from Series A to Series C
  • Familiarity with network segmentation and OT/corporate network boundary design

Responsibilities

  • Conduct a full AWS security posture assessment - IAM, S3 bucket policies, VPC security groups, exposed endpoints, and logging gaps - and deliver a prioritized remediation roadmap
  • Activate and tune AWS Security tools across all accounts and regions
  • Enforce least-privilege IAM - eliminate wildcard permissions, audit all existing roles, and implement role-based access patterns
  • Enable AWS Config Rules and automated remediation for common misconfigurations - public S3 buckets, unencrypted volumes, unrestricted security groups
  • Design and implement a secrets management strategy
  • Establish a vulnerability management program for cloud workloads
  • Own cloud infrastructure incident response - detection, triage, containment, and post-incident review
  • Implement DLP policies - data classification, external sharing controls, and external forwarding restrictions
  • Manage and mature the Zero Trust / VPN solution
  • Own SIEM selection and deployment; configure alerting and on-call
  • Implement phishing-resistant MFA (hardware keys or passkeys) for privileged accounts
  • Conduct annual security awareness training and quarterly phishing simulations
  • Maintain security policies: Acceptable Use, Access Control, Incident Response, Vulnerability Management, and Data Classification
  • Own SOC 2 Type II continuous compliance and conduct a controls gap assessment
  • Partner with Engineering to implement security controls in the SDLC - SAST, dependency scanning, and secrets detection in CI/CD pipelines
  • Own the vendor security review process - evaluate third-party tools for risk before procurement
  • Maintain a risk register and report quarterly
  • Build and own the Incident Response Plan - define severity levels, escalation paths, and communication templates

Benefits

  • Comprehensive medical, dental and vision plans for our employees and their families
  • 401K plan
  • Maternity and paternity leave
  • Flexible Time Off (Exempt) / Paid time off (Non-Exempt)
  • Flexible work environment
  • Orca pass (for those in Puget Sound)
  • Free parking (Seattle office)
  • Free snacks, drinks and espresso (Seattle office)

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Job Search Resources

Similar Cloud Security Engineer job opportunities

Cloud Security Engineer
Booz Allen Hamilton
Booz Allen Hamilton • Alexandria, VA8d • $99,000 - $225,000
Cloud Security Engineer
Renesas Electronics
Renesas Electronics • Frisco, TX1d • Onsite
Cloud Security Engineer
Stefanini Group
Stefanini Group • Atlanta, GA4d • Hybrid
Cloud Security Engineer
Greenberg Traurig
Greenberg Traurig • Miramar, FL3d • Hybrid
🔥 New JobCloud Security Engineer
San R&D Business Solutions LLC
San R&D Business Solutions LLC • New York, NY1d • Hybrid
Cloud Security Engineer
Booz Allen Hamilton
Booz Allen Hamilton • Charlottesville, VA13d • $99,000 - $225,000
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service