Sr. Cloud Security Engineer/Architect

About The Position

Requirements

• 7+ years of experience in information security, with a strong emphasis on hands‑on cloud security engineering.
• Demonstrated experience securing at least one major cloud platform (AWS, Azure, GCP).
• Strong proficiency with multiple standard security technologies, including:
• IAM and directory services
• Network and firewall technologies
• Workload and endpoint protection
• Vulnerability and configuration management
• Security logging, monitoring, and SIEM integration
• Solid understanding of cloud networking, compute, storage, and application fundamentals.
• Proven ability to work effectively with corporate IT and cross‑functional engineering teams.
• Strong written and verbal communication skills.

Nice To Haves

• Experience contributing to cloud security architecture or reference designs.
• Familiarity with DevSecOps practices and infrastructure‑as‑code tools.
• Experience in large enterprise or regulated environments.
• Knowledge of frameworks such as NIST, CIS Benchmarks, or ISO 27001.
• Multi-cloud experience
• Relevant cloud or security certifications (e.g., AWS/Azure Security, CISSP, CCSP).

Responsibilities

• Implement, configure, and operate security controls across cloud environments (IaaS, PaaS, SaaS).
• Deploy and manage cloud security technologies, including:
• Identity and access management (IAM, role design, privileged access)
• Network security controls (firewalls, segmentation, private connectivity)
• Cloud security platforms (CSPM, CWPP, CIEM)
• Encryption, key management, and secrets management
• Logging, monitoring, and alerting integrated with SIEM/SOC workflows
• Support secure CI/CD pipelines, infrastructure‑as‑code, and automation efforts.
• Perform hands‑on troubleshooting and remediation of cloud security issues.
• Partner with operations and engineering teams to securely deploy new cloud services and workloads.
• Identify, assess, and remediate cloud security risks and misconfigurations.
• Respond to security findings from monitoring tools, vulnerability scans, audits, and incidents.
• Improve detection coverage, alert quality, and response workflows related to cloud services.
• Ensure security controls are scalable, reliable, and aligned with operational realities.
• Contribute to cloud security architecture, reference designs, and technical standards.
• Active participation on the Architecture Review Board.
• Participate in security design reviews and architecture discussions for new cloud initiatives.
• Help define guardrails and best practices that enable teams to build securely by default.
• Translate architectural guidance into practical, implementable engineering solutions.
• Work closely with corporate IT, cloud platform teams, application teams, and other security staff.
• Communicate security requirements and risks clearly to both technical and non‑technical audiences.
• Act as a hands‑on security partner rather than a gatekeeper.
• Mentor junior engineers and share operational best practices.

Benefits

• We offer a comprehensive package of benefits including paid vacation time; paid sick leave; medical/dental/vision insurance; life, accident and disability insurance; tax-advantaged flexible spending and health savings accounts; employee assistance program; other voluntary benefit programs such as supplemental life and AD&D, legal plan, pet insurance, critical illness, accident and hospital indemnity; tuition reimbursement; transit; the Applause Program, employee stock purchase plan, and the Sandisk's Savings 401(k) Plan.