Sr. Cybersecurity Engineer - Cloud

About The Position

Requirements

• 5+ years of relevant work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience.
• Proven ability to design, review, and implement security controls across multicloud environments, including: Cloud Identity and Access Management (IAM), least‑privilege access, and workload identity
• Network segmentation, service‑to‑service authentication, and mTLS
• Cloud encryption models and key management (KMS, HSM, certificate authorities)
• Experience with Cloud Security Posture Management (CSPM) and misconfiguration detection.
• Understanding of cloud‑native logging, monitoring, and detection capabilities
• Hands‑on experience securing: Kubernetes and container platforms
• Container image scanning and runtime security
• Infrastructure‑as‑Code (Terraform, CloudFormation, ARM)
• Ability to embed security controls into CI/CD pipelines and platform guardrails.
• Familiarity with configuration‑drift detection and continuous compliance.
• Strong understanding of: API security (OAuth/OIDC, token‑based auth)
• Application‑level encryption, tokenization, and hashing
• Data protection across storage, database, and file‑system layers
• Ability to support secure software development lifecycle (SSDLC) practices, including SAST, SCA, and SBOM
• Working knowledge of security and compliance frameworks such as PCI DSS, ISO 27001, SOC 2, GDPR, or NIST.
• Ability to translate security findings into risk‑based recommendations for engineering and leadership.
• Experience partnering with architecture, risk, and compliance teams
• Demonstrated hands‑on and architectural knowledge of enterprise‑grade AI and LLM platforms, including: Anthropic Claude
• OpenAI (ChatGPT, GPT APIs, enterprise offerings)
• Comparable LLM providers and managed AI services
• Platform security models and shared‑responsibility boundaries
• API‑based consumption vs managed SaaS usage
• Enterprise controls for data handling, logging, and access enforcement

Nice To Haves

• Experience operating in regulated or high‑availability environments is strongly preferred.
• Experience with cloud‑security tooling (e.g., CSPM, container security, IAM platforms).
• Cloud or security certifications are preferred but not mandatory, including: CCSK / CCSP
• AWS, Azure, or GCP Security certifications
• CISSP or equivalent
• Continuous learning mindset aligned with evolving multicloud security practices.

Responsibilities

• Designing, implementing, and operating security controls that protect cloud‑native platforms and workloads across public cloud environments (AWS, Azure, GCP).
• Partnering closely with engineering, DevOps, and architecture teams to ensure cloud services are secure by design, compliant with regulatory requirements, and resilient at scale.
• Providing security oversight and engineering support for AI‑enabled capabilities used across the Pismo platform.
• Ensuring that adoption of Artificial Intelligence and Large Language Models (LLMs) is aligned with Visa security controls, Pismo data‑protection principles, and global regulatory expectations.

Benefits

• Medical
• Dental
• Vision
• 401 (k)
• FSA/HSA
• Life Insurance
• Paid Time Off
• Wellness Program