Cloud Security Engineer

📋 Description

• Own and mature BRINC's AWS security posture and corporate infra.
• Turn passive AWS tooling into active threat detection; SOC 2 readiness.
• Tune AWS security tools across accounts and regions; enforce least-privilege IAM.
• Design and implement secrets management and a cloud vulnerability program.
• Own incident response, DLP, MFA, and security policy governance.

🎯 Requirements

• 5-8 years of security engineering experience with a strong AWS focus.
• Hands-on with AWS security services: GuardDuty, Security Hub, CloudTrail, Config, IAM, and SCPs.
• SOC 2 or ISO 27001 readiness experience; ideally as primary technical lead.
• Proficiency in at least one SIEM: Splunk, Elastic, Panther, or equivalent.
• Scripting in Python or Bash; Google Workspace security and administration.
• Strong written communication for security policies and runbooks.

🎁 Benefits

• Comprehensive medical, dental and vision plans for employees and their families.
• 401K plan.
• Maternity and paternity leave.
• Flexible Time Off (Exempt) / Paid time off (Non-Exempt).
• Flexible work environment.
• Orca pass (Puget Sound).
• Free parking (Seattle office).