Principal Cloud & Network Security Engineer

Hard Rock Digitalβ€’United States, FL
β€’Hybrid

About The Position

Hard Rock Digital is building the best online sportsbook, casino, and social gaming company in the world. This role is for a Principal Cloud & Network Security Engineer who will own security across the company's multi-cloud footprint (AWS, Azure, GCP) and the Cloudflare edge. This is a high-impact, high-autonomy role reporting directly to the VP Security / CISO, serving as the senior technical owner for cloud, network, and edge security within a 16-person security organization. The engineer will be responsible for defining and implementing security strategies, ensuring secure configurations, and protecting live betting traffic.

Requirements

  • 10+ years in cloud, network, or infrastructure security engineering, or equivalent practical experience.
  • Deep, hands-on expertise in at least one major cloud (AWS strongly preferred), with working knowledge of a second.
  • Experience with cloud security posture and runtime protection tooling (Wiz or equivalent CNAPP/runtime tooling) at scale.
  • Strong network security fundamentals: segmentation, firewalls, ZTNA, and secure connectivity patterns.
  • Hands-on experience with edge/WAF/CDN protection (Cloudflare a strong plus).
  • Infrastructure-as-Code proficiency (Terraform), a policy-as-code mindset, and scripting/automation skills (Python, Bash, or Go).
  • Comfortable working in CI/CD pipelines.
  • A track record of leading through influence, setting technical direction across teams.
  • Ability to explain network paths to engineers and risks to executives.
  • Fluency with AI, daily use of AI tools for speed and sharpness, and hands-on experience applying AI to security or engineering work.

Nice To Haves

  • Experience in a regulated industry (gaming, financial services, healthcare), especially PCI DSS network segmentation and scoping, or GLI-19/GLI-33 requirements.
  • Deep Cloudflare experience across WAF, Bot Management, Access, and the Zero Trust suite.
  • Experience securing containers and orchestration (Kubernetes network policy, service mesh, or workload identity).
  • Relevant certifications (e.g., AWS Security Specialty, CCSP, GIAC cloud/network security).
  • Experience deploying DNSSEC (or DNS-layer security controls) across a production, multi-zone estate.

Responsibilities

  • Own cloud security posture and runtime protection across AWS, Azure, and GCP using Wiz and modern runtime protection tooling.
  • Define and maintain secure configuration baselines and guardrails for cloud resources.
  • Partner with SecOps to integrate cloud security signals into the detection and response pipeline.
  • Design and implement network segmentation and east-west controls.
  • Advance Zero Trust network access using Cloudflare Access, private connectivity, and service-to-service authentication.
  • Align network posture to NIST SP 800-207 and the CISA Zero Trust Maturity Model.
  • Own the security configuration of the Cloudflare edge, including WAF, Bot Management, and DDoS protections.
  • Tune edge protections to prevent abuse and attacks without impacting legitimate players.
  • Build policy-as-code and Terraform guardrails, and embed infrastructure-as-code security scanning into CI/CD pipelines.
  • Partner with platform and infrastructure teams to ensure secure infrastructure is the default.
  • Automate security processes to scale with the engineering organization.
  • Act as the design authority for cloud, network, and edge security, setting standards and mentoring engineers.

Benefits

  • Competitive pay and benefits
  • Flexible vacation allowance
  • A hybrid / remote working environment
  • Startup culture backed by a secure, global brand
Β© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service