Senior Cloud Security Engineer

Are you passionate about building secure, scalable systems in the cloud? Do you enjoy collaborating across teams to embed security at every stage of development? Are you excited to contribute your cloud security expertise to an environment that values innovation, collaboration, and continuous improvement? If so, we invite you to be a part of our innovative team.

As a Senior Cloud Security Engineer at Ridgeline, you’ll take the lead in securing key components of our platform and cloud infrastructure. You will work closely with Engineering, Dev Ops, Product, and Compliance to embed cloud security practices, enable secure‑by‑design development, and implement scalable, resilient security guardrails. Your contributions will help ensure our AWS environments and services are safe, compliant, and efficient.

You’ll also explore and apply emerging AI tools like Git Hub Copilot and ChatGPT to enhance our workflows and capabilities in innovative ways.

At Ridgeline, how we work matters as much as what we build. Ridgeliners act like owners, choose growth over comfort, and communicate with transparency. We assume positive intent, bias toward action, and bring solutions—not just problems. We celebrate wins, learn from setbacks, and thrive in a resilient, collaborative, high‑performing culture. If this excites you, we’d love to meet you.

You must be work authorized in the United States without the need for employer sponsorship.

• Perform security and architecture reviews of AWS infrastructure and third‑party cloud services
• Develop scalable security tooling and automation, incorporating AI‑augmented platforms where applicable
• Design and maintain security guardrails such as SCPs, IAM boundaries, and policy‑as‑code
• Integrate detection and alerting into observability systems to enhance runtime security monitoring
• Embed security into CI/CD pipelines, infrastructure automation, and internal tooling
• Establish frameworks for secure integration with third‑party services and internal platforms
• Improve identity and access management, encryption, and least‑privilege controls
• Collaborate with engineering, product, and compliance teams to align on security requirements
• Provide support and technical guidance through code reviews, pairing, and consultation
  
  Encourage a collaborative, solutions‑focused approach to securing services at scale

• 5+ years of experience in cloud security or platform engineering
• Bachelor’s degree in Computer Science or equivalent practical experience
• Proficiency in a high‑level language such as Python (preferred), Kotlin, or Type Script
• Hands‑on experience with AWS services including IAM, VPC, ECS/EKS, Lambda, S3, and Cloud Watch
• Expertise in designing and applying IAM and SCP policies
• Knowledge of cloud workload protection, monitoring, and threat detection in AWS
• Experience using Terraform and infrastructure‑as‑code practices
• Clear and effective communication skills, especially around security tradeoffs and technical design
• Demonstrated ability to lead projects, work independently, and contribute cross‑functionally

• Familiarity with network security principles such as traffic segmentation, firewalls, IDS/IPS
• Contributions to open source security tooling or research
• Experience applying AI or LLM tools in security or engineering workflows

This role is only available in either Reno, NV or San Ramon, CA and is a hybrid role. Are you located in either area or open to relocation?

Ridgeline is the industry cloud platform for investment management. It was founded by visionary tech entrepreneur Dave Duffield (co‑founder of both People Soft and Workday) to apply his successful formula of solving operational business challenges with bold innovation and human connectivity to the unique needs of the investment management industry.

Ridgeline started with a clean sheet of paper and a deep bench of experts bound by a set of core values and motivated to revolutionize an industry underserved by its current tech offerings. We are building a new, modern platform in the public cloud, purpose‑built for the investment management industry and we are prioritizing security, agility,…