Senior Trust Operations Cloud Engineer

Who we are

We're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help companies put trust - an abstract idea - to work. That's digital trust for the real world.

Job summary

Join our Security Operations team as a Senior Cloud Security Engineer, playing a key role in designing, implementing, and maintaining our cloud environments. In this role, you will work closely with Engineering, Compliance, Security, and DevOps teams to ensure our cloud infrastructure is secure, scalable, and optimized. We are seeking a highly skilled cloud professional with deep experience in AWS and expertise in CNAPP/CSPM tools to manage cloud-native security, risk monitoring, and compliance. You will be responsible for architecting cloud solutions, integrating security platforms, and creating automated workflows to enhance visibility, protect workloads, and support the organization’s strategic cloud initiatives.

What you will do

• Design, implement, and maintain secure, scalable, and highly available cloud architectures in AWS to support the Trust Operations team’s initiatives.

• Provide expert guidance and strategic recommendations on cloud solutions across AWS and Azure to ensure alignment with organizational goals and best practices.

• Integrate, configure, and optimize Wiz to enhance visibility and risk management across the cloud ecosystem.

• Lead cloud governance, architecture reviews, and best-practice enforcement for cloud resource configuration and identity management.

• Partner with Security, Compliance, DevOps, and Engineering teams to automate cloud infrastructure and compliance monitoring.

• Ensure adherence to cloud security frameworks such as WebTrust, SOC2, NIST 800-53, and ISO 27001.

• Analyze cloud workloads to identify opportunities for optimization, cost efficiency, and improved performance.

• Serve as a subject matter expert (SME) for AWS networking, IAM, monitoring, and multi-account strategies for the Trust Operations team.

• Provide technical leadership and mentorship to junior engineers.

What you will have

• 5+ years of experience working as Cloud Security Engineer or Cloud Security Architect in security operations or compliance operations (strongly preferred).

• 5+ years of experience in cloud architecture or engineering role, with a focus on AWS (preferred) or Azure (plus).

• AWS Certified Associate Solutions Architect (strongly preferred).

• Bachelor’s or master’s degree in a technical discipline.

• Advanced knowledge of security operations design concepts and principles (strongly preferred).

• Background in threat detection, incident response, or security automation within cloud environments.

• Strong understanding of cloud security principles and hands-on experience with CNAPP, CSPM, or CWPP platforms (strongly preferred).

• Proficiency in AWS CloudFormation, Terraform, and Python or PowerShell scripting (strongly preferred).

• Experience with IAM, VPC design, Lambda, ECS/EKS, and CloudTrail/CloudWatch (strongly preferred).

• Excellent communication and collaboration skills across technical and business teams.

• Excellent written and verbal communication skills.

• Strong customer service orientation and interpersonal skills.

• Proficiency in performing in-depth log analysis.

Nice to have

• Familiarity with cloud-based identity providers, SSO, SAML, etc.

• Experience as point of escalation

• Experience with SIEM technologies, preferably Splunk

• Experience with zScaler products and Web Application Firewall (WAF) technologies

• Proficiency in vulnerability management software, preferably Tenable

• Familiarity with endpoint detection and response software, CrowdStrike preferred

• CISSP certification or willingness and ability to obtain it if not already completed

• Experience with security, compliance, privacy frameworks and audits (e.g. ISO27001, NIST, GDPR, CCPA, WebTrust, SOC2)

• Knowledge of penetration testing practices and principles

Benefits

• Generous time off policies

• Top shelf benefits

• Education, wellness and lifestyle support

#LI-GA1

__PRESENT