Cloud Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Cloud Security Engineer securing applications for Virta Health, reversing metabolic diseases. Leading application security initiatives and collaborating across teams for secure development practices.
Responsibilities:
- Own and Enhance Security Design: Assess our current security controls within GCP and Kubernetes, identify areas for improvement, and drive the maturation of our security posture from good to great.
- Champion Secure Development: Partner closely with Engineering, Product, and Platform teams to integrate security best practices early and often ("shift-left") into the software development lifecycle.
- Build and Automate: Design, implement, and manage security tooling and automation to streamline vulnerability detection, remediation, and compliance verification. Replace manual processes with efficient, automated solutions.
- Refine Access Control: Evolve our identity and access management (IAM) strategy, ensuring least-privilege access and robust auditing capabilities across our systems.
- Strengthen Network Security: Continuously improve our network security architecture, policies, and controls within our cloud environment.
- Develop Clear Standards: Establish, document, and communicate practical security policies, standards, and guidelines for engineering teams.
- Lead Security Initiatives: Drive vulnerability management efforts and enhance our incident response preparedness, ensuring we are ready to handle potential threats effectively.
- Cultivate Security Awareness: Act as a security evangelist, promoting security awareness and best practices throughout the engineering organization.
Requirements:
- Understanding and practical experience in securing cloud-native applications and infrastructure, particularly in Kubernetes environments. GCP experience is strongly preferred.
- Strong grasp of networking concepts, identity management (IAM), encryption, and common web application vulnerabilities (e.g., OWASP Top 10).
- Excellent communication skills with the ability to clearly articulate complex security concepts to diverse audiences and influence technical direction across teams.
- Significant hands-on experience in application security, including threat modeling, secure coding practices, vulnerability management, and security testing (SAST, DAST, IAST).
- Proficiency in Infrastructure as Code (IaC) tools, specifically Terraform.
- Development experience with Go and Python.
Benefits:
- Offers Equity
Similar Jobs
Senior Staff Security Engineer
Senior Staff Security Engineer architecting scalable security solutions for diverse clients. Leading technical strategy and compliance across multi-tenant environments while mentoring senior engineers.
Intern, Blue Team – Wazuh
Intern supporting cybersecurity operations and incident response within Wazuh environment. Join a specialized cyber security team for monitoring and strategic incident response in Brasil.
Managed Security Services Engineer I
Managed Security Services Engineer at Radian Generation focusing on renewable energy technologies. Collaborating with Managed Security Service Providers to enhance cybersecurity and IT management.
Senior Software, Security Architect – Embedded Cybersecurity Platform
Lead Security Architect for implementing embedded cybersecurity solutions for AURA Technologies. Collaborate with the Chief Architect and build a security-focused engineering team.
Head of Security
Head of Security overseeing security strategies, compliance, and operations for AI training data platform. Leading security initiatives and building trust with partners in a high-growth environment.
Security Engineer
Security Engineer managing privileged access and CyberArk technologies at Prime Therapeutics. Safeguarding systems from unauthorized access and ensuring compliance with security standards.
Security Advisor
Security Advisor consulting on information security and compliance for higher education institutions. Assessing customer environments and providing recommendations for improvement.
Lead Manager, Security Governance, Risk & Compliance
Lead Manager in Security Governance, Risk & Compliance at Make-A-Wish America. Supporting GRC and managing risks to ensure compliance with regulations and standards.
Senior Director – Cyber Security Architecture and Engineering Services
Senior Director of Cybersecurity Architecture at U.S. Financial Technology leading cloud-based security initiatives. Ensuring compliance and enhancing efficiencies in cybersecurity architecture and engineering.
Information Security Engineer
Information Security Engineer responsible for optimizing security platforms at Deel's global remote environment. Leading cybersecurity initiatives and collaborating with teams worldwide.
Workday Security Administrator – Modernization Program
Workday Security Administrator managing security configuration and access controls for WVU. Collaborating across HR, Finance, and IT to ensure system integrity and compliance.
Security Engineer, Offensive Security
Security Engineer focusing on advanced vulnerability management and Pentesting as a service at Thrive. Collaborating with clients and ensuring high security standards while fostering trust in cybersecurity capabilities.
Cyber Security Expert – Senior Director/Analyst
Senior Director Analyst supporting national defense modernization and innovation through cybersecurity expertise. Analyzing global market trends and delivering actionable insights to executive clients.
Software Engineer – Product Security
Product Security Engineer developing and operating enterprise security controls. Collaborating with product teams at Allstate to enhance security practices.
Regional Channel Lead – Security & Identity
Channel Account Manager responsible for architecting partner ecosystems and driving revenue. Joining SecureW2's mission towards passwordless security solutions.
Senior Consultant, Penetration Testing
Senior Consultant in Penetration Testing for independent IT management and cybersecurity consultancy. Engaging in web and infrastructure penetration tests and improving client IT security.
Enterprise Account Executive, Cloud Security
Enterprise Account Executive at Foresite selling Google Cloud Security solutions. Collaborating with Google and security specialists to drive revenue growth in mid-market and enterprise accounts.
Cyber Security Engineer – Contract
Cyber Security Engineer responsible for security technologies and operational initiatives at Sunshine Enterprise. Implementing, integrating, and maintaining security technologies across a large-scale environment.
Cybersecurity Architect
Cybersecurity Architect embedding security into every phase of software development lifecycle for cloud infrastructure at Castille Resources Ltd. Designing and implementing security controls and a zero-trust environment.
Network Security Engineer
Security Engineer supporting enterprise security operations and enhancing overall security monitoring across a centralized environment. Focused on designing, tuning, and maintaining security detection rules.