Cybersecurity Senior Engineer – Cloud Security

Employment Type

Regular

English (Required)

1st shift (United States of America)

We are seeking a highly skilled Engineer to join our technology team. The ideal candidate will excel in designing secure, scalable, and automated cloud solutions, with deep expertise in Python-based automation, AWS, container technologies, CI/CD-Git Lab and Infrastructure as code (IaC) with security-focused delivery practices. This role will focus on building modern cloud infrastructure, automating deployments, enhancing security posture, and ensuring seamless collaboration across engineering, development, and risk teams.

Additionally, this role contains a strong data engineering component, and you will own the full lifecycle of security data: ingesting raw cloud asset and event data via Cloud Query, transforming and modeling it with dbt, storing it in structured databases, and surfacing insights through Grafana dashboards consumed by security leadership, engineering teams, and executive stakeholders.

• Automate operational workflows using Python.
• Build and manage CI/CD pipelines using Git Lab.
• Manage AWS services and ensure secure, scalable cloud environments.
• Build, deploy, and automate containerized applications.
• Develop Infrastructure as Code using Terraform and Cloud Formation.
• Implement and support cloud security tools (e.g., Wiz).
• Troubleshoot and resolve pipeline, cloud, and infrastructure issues.
• Manage vulnerability lifecycle for cloud infrastructure, prioritizing findings through a risk-based lens.
• Design, deploy, and maintain Cloud Query pipelines to continuously ingest cloud asset inventory, configuration state, and security findings from AWS, Azure, and GCP into a centralized data store.
• Implement robust scheduling, error handling, and data freshness monitoring for all ingestion pipelines.
• Manage schema evolution and backward compatibility as upstream APIs and data models change.
• Collaborate with the data platform team on storage architecture, partitioning strategy, and query performance.
• Document all models in dbt's built-in documentation layer, enabling self-service consumption by downstream teams.
• Optimize dbt model performance through incremental materialization, partitioning, and query pushdown strategies.
• Build, maintain, and continuously improve a library of Grafana dashboards serving security operations, engineering, and executive audiences.
• Apply hands‑on AWS (and multi‑cloud) security knowledge to validate the accuracy and completeness of ingested security data.
• Translate cloud security concepts into data model attributes and dashboard metrics that accurately reflect underlying risk.
• Participate in security architecture reviews to identify data collection gaps and advocate for telemetry improvements.
• Support vulnerability management, compliance reporting, and security posture programs with data‑driven analysis.
• Collaborate with cross‑functional engineering and security teams.
• Serve as a security advisor to platform engineering and product development teams.
• Mentor junior engineers and cross‑functional staff on cloud security fundamentals and standard security practices.
• Communicate risk posture and program metrics to leadership in clear, business‑relevant terms backed by dashboard evidence.

• Bachelor’s degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience.
• Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.
• Previous experience in leading complex IT projects.

• Proficiency in Python scripting.
• Strong Git Lab CI/CD pipeline development.
• Strong hands‑on experience with AWS, including:
  • IAM
  • ECS / EKS
  • EC2
  • S3
  • Cloud Trail
  • Cloud Watch
  • Cloud Front
  • VPC and AWS networking
• Infrastructure as Code with Terraform and Cloud Formation.
• Strong container development and…