Senior Infrastructure Engineer, Cloud Security

About The Position

Requirements

• 6+ years of hands-on cloud engineering experience, with substantial time spent on cloud security in production — IAM, network architecture, blast-radius reduction, and vulnerability management
• Production Terraform fluency and experience authoring custom IaC security scanning rules, pinning module versions, and hardening CI/CD pipelines
• Deep experience in at least one major cloud (AWS preferred, GCP acceptable), including account strategy, network design, and least-privilege IAM
• Experience treating detection as a product and consolidating vulnerability and misconfiguration programs
• Experience evaluating SIEM approaches — vendor-hosted, self-operated, or hybrid — and making a principled choice for a given organization's scale and risk tolerance
• Understanding of the security implications of LLMs, agents, and AI-enabled developer tooling, and ability to set a reasonable bar for their safe adoption
• Ability to work well on a collaborative Cloud Infrastructure team and partner effectively with InfoSec, IT, and parent-company security functions

Nice To Haves

• Led a cloud security migration or modernization project where the vision, approach, and implementation were defined and delivered.
• Built or open-sourced internal security tooling, libraries, or scanning rules that improved how teams work with cloud infrastructure.
• Experience translating compliance frameworks (SOC 2, PCI-DSS, or GLBA) into engineering controls without creating friction for development teams.
• Hands-on experience securing production AI or ML systems — including prompt injection defenses, agent sandboxing, or model supply chain risk.

Responsibilities

• Evolving our AWS account strategy, VPC design, and workload segmentation as our infrastructure footprint grows
• Owning our firewalls, and edge security strategy across our cloud footprint
• Enhancing our IaC security scanning, Terraform module governance, and pipeline security for our infrastructure deployments
• Owning and evolving our vulnerability management, misconfiguration detection, and SIEM strategy
• Setting the security bar for our AI products and AI-adjacent developer tooling, in partnership with product, InfoSec, and IT
• Contributing to day-to-day Cloud Infrastructure work alongside your security specialty — Terraform reviews, platform backlog, on-call rotation

Benefits

• Health, Dental & Vision Plans
• Competitive Pay
• 401k Matching
• Unlimited PTO
• Lunch daily (in-office only)
• Snacks & Coffee (in-office only)
• Commuter benefits (in-office only)