Platform Security Engineer

Beverly Hills, California, United States

BELLA+CANVAS is the brand behind the T-Shirt movement. Headquartered in Los Angeles, we are the largest manufacturer of premium wholesale apparel in North America. Specializing in high quality, fashion-forward styles, we provide blank garments to decorators, promotional distributors, and brands all over the world.

At BELLA+CANVAS, we're all about providing a place where the entrepreneurial spirit thrives. It’s a collaborative environment where everyone has a voice and great ideas can come from anyone. We seek to ignite the BE DIFFERENT mentality throughout the organization.

Mindful movement. It’s at the core of why we do what we do at ALO—it’s our calling. Because mindful movement in the studio leads to better living. It changes who yogis are off the mat, making their lives and their communities better. That’s the real meaning of studio-to-street: taking the consciousness from practice on the mat and putting it into practice in life.

We are seeking a highly skilled Platform Security Engineer to join our team. In this role, you will design and implement security measures across enterprise platforms, ensuring robust protection for high-traffic websites and mission-critical systems. You will work at the intersection of cloud security, automation, and application protection.

• Architect and enforce security standards for cloud platforms (AWS, Azure, GCP) and container orchestration systems (Kubernetes, Docker).
• Configure and manage CDN technologies
  , Web Application Firewalls (WAF), and Bot Management platforms to secure web applications and mitigate automated threats.
• Support and secure high-traffic websites
  , ensuring scalability and resilience under heavy load.
• Integrate security into CI/CD pipelines and automate compliance checks.
• Conduct vulnerability assessments, penetration tests, and respond to incidents promptly.
• Collaborate with Dev Ops and engineering teams to embed security in platform design.
• Manage privileged access and enforce least-privilege principles across platforms.
• Implement identity security measures for multi-cloud environments.

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 3+ years in platform security, cloud security, or Dev Sec Ops  roles.
• Hands-on experience with CDN technologies (e.g., Akamai, Cloudflare),
  WAF solutions
  , and Bot Management platforms
  .
• Proven experience supporting high-traffic websites and securing large-scale distributed systems.
• Proficiency in scripting languages (Python, Bash) and Infrastructure-as-Code tools (Terraform, Cloud Formation).
• Experience with container security, Kubernetes hardening, and CI/CD security.
• Familiarity with SIEM tools, threat intelligence, and compliance frameworks (SOC2, ISO 27001).

The base salary range for this position is $140,000-$180,000 per year which represents the current range for the base salary for this exempt position. Please note that actual salaries will vary based on factors including but not limited to location, experience, and performance. As such, on occasion and when applicable, there is the possibility that the final, agreed-upon base salary may be outside of the upper end of the range.

Please also note the range listed is just one component of the company’s total rewards package for exempt employees. Other rewards may include performance bonuses, long term incentives, a PTO policy, and many other progressive benefits.