Senior Security Engineer – Cloud & Data Security

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field . Masters in Cyber Security is a plus.
• Bachelor’s or Master Degree in Computer Science, Cyber Security or related fields.
• Deep expertise in AWS, GCP, or Azure security services and architectures.
• Proven ability to produce high-quality results in a fast-paced SaaS environment or similar large scale environment.
• 6+ years of hands-on experience in fields like Cloud Security, Data Security and IAM
• Advanced understanding of Security Engineering in SaaS and AI-driven environments.
• Strong proficiency in scripting languages (e.g., Python, Go, PowerShell) for automation, data analysis, and security tooling development.
• Strong understanding with container security, orchestration security, and authentication/authorization.
• Hands-on experience with Kubernetes, containers, and serverless security.
• Deep Hands-on knowledge on security platforms like Wiz, Cloudflare,Netskope.
• Relevant certifications such as CISSP, CCSP, or AWS Security Specialty.

Responsibilities

• Partner with infrastructure and engineering teams to embed security into development workflows and promote secure-by-default patterns
• Design, implement, and continuously improve Sigma Cloud Security in all environments - AWS, GCP, Azure.
• Conduct cloud threat modeling and security risk assessments for new projects, integrations, and SaaS platforms.
• Develop and enforce identity and access management (IAM) best practices, including zero trust models and privileged access controls across IaaS and SaaS environments
• Deploy and manage cloud-native security services (CSPM, CNAPP, DSPM, SIEM, DLP, WAF, Kubernetes, container security)
• Review and apply zero trust principles through strict network segmentation, authentication, and authorization across our cloud environments.
• Engineer and support solutions for data security, encryption, key management, and secrets management.
• Build infrastructure-as-code (IaC) security controls using Terraform, CloudFormation, or similar tools.
• Partner with DevOps/Engineering to embed DevSecOps practices into CI/CD pipelines and application development.
• Proactively identify and remediate misconfigurations and vulnerabilities across cloud workloads.
• Develop sophisticated signature and rules for Cloud security and Automate detection and response workflows for cloud security incidents.
• Use AI securely and effectively to make the team efficient and scale security practices.
• Stay ahead of evolving threats – leverage intelligence, attack simulation, and red/blue team learnings to refine defenses.

Benefits

• Equity
• Generous health benefits
• Flexible time off policy. Take the time off you need!
• Paid bonding time for all new parents
• Traditional and Roth 401k
• Commuter and FSA benefits
• Lunch Program
• Dog friendly office