Cybersecurity Senior Engineer – Cloud Security

About The Position

Requirements

• Bachelor’s degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience
• Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
• Previous experience in leading complex IT projects

Nice To Haves

• Proficiency in Python scripting.
• Strong GitLab CI/CD pipeline development.
• Strong hands-on experience with AWS, including: IAM ECS / EKS EC2 S3 CloudTrail CloudWatch CloudFront VPC and AWS networking Infrastructure as Code with Terraform and CloudFormation.
• Strong container development and automation experience.
• Experience with cloud security tools (e.g., Wiz).
• Exposure to Azure (preferred).
• Production dbt experience: model authoring, testing, documentation, incremental strategies, and CI integration
• Strong SQL proficiency across one or more analytical databases (e.g. PostgreSQL)
• Grafana dashboard development experience: panel types, templating, alerting, and data source configuration
• Experience supporting compliance frameworks: SOC 2, PCI-DSS, HIPAA, or FedRAMP
• Excellent written and verbal communication skills; able to translate technical risk to business impact
• Strong analytical and problem-solving capabilities.
• Ability to collaborate effectively across diverse teams.
• AWS certifications (Solutions Architect, DevOps Engineer, etc.).
• Experience with AI/ML tools: AWS Bedrock Streamlit Claude Sonnet Vector Databases
• Familiarity with generative AI integrations.
• Experience with penetration testing, application security, and related disciplines
• Familiarity with MITRE ATT&CK Cloud matrix and adversary simulation concepts
• Experience operating in a regulated industry (financial services, healthcare, defense)
• Background supporting executive-level security reporting programs with defined KPIs and OKRs

Responsibilities

• Automate operational workflows using Python.
• Build and manage CI/CD pipelines using GitLab.
• Manage AWS services and ensure secure, scalable cloud environments.
• Build, deploy, and automate containerized applications.
• Develop Infrastructure as Code using Terraform and CloudFormation.
• Implement and support cloud security tools (e.g., Wiz).
• Troubleshoot and resolve pipeline, cloud, and infrastructure issues.
• Manage vulnerability lifecycle for cloud infrastructure, prioritizing findings through a risk-based lens
• Design, deploy, and maintain CloudQuery pipelines to continuously ingest cloud asset inventory, configuration state, and security findings from AWS, Azure, and GCP into a centralized data store
• Implement robust scheduling, error handling, and data freshness monitoring for all ingestion pipelines
• Manage schema evolution and backward compatibility as upstream APIs and data models change
• Collaborate with the data platform team on storage architecture, partitioning strategy, and query performance
• Document all models in dbt's built-in documentation layer, enabling self-service consumption by downstream teams
• Optimize dbt model performance through incremental materialization, partitioning, and query pushdown strategies
• Build, maintain, and continuously improve a library of Grafana dashboards serving security operations, engineering, and executive audiences
• Apply hands-on AWS (and multi-cloud) security knowledge to validate the accuracy and completeness of ingested security data
• Translate cloud security concepts into data model attributes and dashboard metrics that accurately reflect underlying risk
• Participate in security architecture reviews to identify data collection gaps and advocate for telemetry improvements
• Support vulnerability management, compliance reporting, and security posture programs with data-driven analysis
• Collaborate with cross-functional engineering and security teams.
• Serve as a security advisor to platform engineering and product development teams
• Mentor junior engineers and cross-functional staff on cloud security fundamentals and standard security practices
• Communicate risk posture and program metrics to leadership in clear, business-relevant terms backed by dashboard evidence

Benefits

• medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan
• no less than 10 days of vacation
• 10 sick days
• paid holidays