Source Job

• Actively partner on the Cloud Security strategy and implementation.
• Evolve and expand our current Cloud Security posture across multiple platforms.
• Recommend and validate Security controls and improvements across our infrastructure stack

Circle is a global financial technology firm building the foundation for a more open financial system through digital assets, payment applications, and blockchain infrastructure. They value their employees and foster a culture of collaboration and excellence, with a flexible work enviornment.

• Perform infrastructure security reviews across cloud services, network design, IAM, and platform components.
• Design and build internal security services, APIs, and tools that automate infrastructure vulnerability detection, triage, reporting, and remediation.
• Develop security automation that integrates with CI/CD, cloud control planes, and developer workflows to shift detection and remediation earlier in the lifecycle.

Webflow is building the world’s leading AI-native Digital Experience Platform as a remote-first company. They empower teams to design, launch, and optimize for the web without barriers, from entrepreneurs to global enterprises, and believe the future of the web, and work, is more open, more creative, and more equitable.

• Partner with engineering to drive technical implementation of controls throughout the product and infrastructure
• Design, implement, and continuously improve security controls across AWS infrastructure and application architecture
• Enhance and tune monitoring and detection capabilities in support of customer security and incident response capabilities

AlertMedia helps organizations protect their people and businesses through all phases of an emergency. Their award-winning threat intelligence, emergency communication, and travel risk management solutions help companies of all sizes identify, respond to, and recover from critical events faster and more confidently. They support essential communication for thousands of leading businesses in more than 150 countries.

• Design, develop, and implement cloud-based infrastructure and programs.
• Analyze and identify potential security threats and assess risks.
• Partner with architects, engineers, and data scientists to develop and implement cloud security strategies.

Sift Healthcare is a data science company working to improve payments operations and outcomes in the healthcare industry. They are a growing and dynamic team based in Milwaukee, Wisconsin, that is serious about AI and thriving, looking for motivated team members who will help shape their culture.

• Lead security architecture and design reviews across applications, infrastructure, and integrations.
• Conduct and coordinate penetration testing, threat modeling, and security reviews.
• Design and implement security automation within CI/CD pipelines.

Assured modernizes insurance by providing software solutions to large insurers that help them win in a technology-driven world. Their products include self-service claim-filing software to backend fraud detection and are dynamic, collaborative, and rewarding.

• Utilising knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform.
• Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification
• Test Cloud Security labs to ensure they function as expected

Immersive One is the leading cyber resilience solution across the globe, helping organizations future-proof against cyber challenges. Founded in 2017, they've grown to over 300 global employees and have been voted a Best place to work on multiple occasions.

• Design, develop, and implement cloud security architecture solutions in Microsoft Azure.
• Build and maintain security automation using Infrastructure as Code (IaC) tools.
• Collaborate with development and platform engineering teams to embed security into CI/CD pipelines.

Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering the most advanced O&P solutions, clinically differentiated programs and unsurpassed customer service. With 160 years of clinical excellence and innovation, Hanger's vision is to lead the orthotic and prosthetic markets by providing superior patient care, outcomes, services and value.

• Plays a key role in safeguarding the company’s cloud-based healthcare SaaS platforms, infrastructure, and customer data.
• Responsible for designing, implementing, and managing enterprise-grade security solutions that align with regulatory frameworks such as HIPAA, HITRUST, SOC 2, and NIST 800-53.
• Hands-on technologist with deep knowledge of cloud security (AWS/Azure), DevSecOps practices, endpoint protection, identity management, and security automation.

Reveleer provides cloud-based healthcare SaaS platforms. Reveleer is an equal opportunity employer and E-Verifies all new hires.

• Lead Application Security testing projects and drive remediation of identified vulnerabilities.
• Design and run adversarial testing campaigns across the full Buildkite environment.
• Build automation for both AppSec and adversarial testing workflows.

Buildkite's mission is to unblock every developer on the planet with their CI/CD platform. They are a remote-first company since 2013 with a small team, high standards, and real ownership distributed across 60+ cities, built around async communication and genuine autonomy.

• Collaborate with engineers to defend Tanium Cloud's services.
• Design, implement, and operate controls to counter risks and threats.
• Integrate security threats, vulnerabilities, and industry trends.

Tanium is an Autonomous IT company driven by AI and real-time endpoint intelligence. They empower IT and security teams to make their organizations unstoppable, with many of the world’s leading organizations trusting their single, unified platform. At Tanium, they are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity.

• Design and implement security controls across cloud infrastructure, applications, and data systems.
• Identify, assess, and mitigate security risks through threat modeling, reviews, and testing.
• Build and maintain monitoring, alerting, and incident response capabilities.

BlockchainUnmasked aims to streamline cryptocurrency forensic investigations through advanced automation combined with cutting-edge solutions. They work with investigative partners to dramatically accelerate investigation times and boost success rates in interdiction, recovery, and deterrence.

• Enhance the security of cloud infrastructure.
• Ensure the best outcomes for patients.
• Maintain close partnerships with Engineering and Product teams.

Rula is dedicated to treating the whole person, not just the symptoms, to make mental healthcare work for everyone. They aim to create a world where mental health is no longer stigmatized, and their culture supports employees in feeling safe, seen, heard, and valued.

• Conduct security assessments and build a prioritized remediation roadmap across infrastructure and services
• Harden AWS and Kubernetes environments: IAM, network policies, workload isolation, secrets management
• Secure AI-specific attack surfaces: prompt injection defenses, PII handling in LLM pipelines, model interaction data leakage

Kiefer Tech leverages over 20 years of engineering heritage from the Green Energy sector to deliver cutting-edge AI, robotics, and enterprise solutions across Greece and the EU. They build sovereign AI infrastructure that keeps data within EU borders, respect privacy, and delivers tangible business impact.

• Design and implement cloud security guardrails across AWS and GCP
• Embed policy enforcement and compliance checks directly into Terraform modules
• Conduct architecture reviews and continuously harden multi-cloud environments

Beast Industries is a multifaceted media and entertainment company founded by Jimmy Donaldson, popularly known as MrBeast. We are known for revolutionizing digital content creation, encompassing ventures that extend far beyond YouTube.

• Lead and grow a high-performing security engineering team.
• Own cloud security architecture for AWS.
• Embed security into the SDLC: threat modeling, secure coding guidance, code scanning, dependency controls, build-time checks, and release gates.

Keyrock is a leading change-maker in the digital asset space, known for partnerships and innovation. They have over 180 team members around the world from 42 nationalities, with backgrounds ranging from DeFi natives to PhDs, with hubs in London, Brussels, Singapore and Paris.

• Conducting a comprehensive threat model of our application and infrastructure layers.
• Hardening our AWS infrastructure while keeping developer workflows frictionless.
• Integrating security tooling into our CI/CD pipeline.

Loancrate simplifies home-buying for lenders and borrowers by building AI-native tooling to automate mortgage workflows. Since 2020, their remote team has enabled customers to power >$85 billion in new home loans and they value collaboration and open communication.

• Perform systems administration and maintenance including patching, vulnerability scanning and remediation for cloud workloads.
• Support multi‑cloud environments (AWS, Azure, GCP), including Windows and Linux EC2 instances and container workloads.
• Configure, update, and maintain security tools for endpoint protection, log collection, vulnerability scanning, and compliance monitoring.

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation. With over 50 years of experience, they foster a collaborative, innovative, and mission-driven environment.

• Design, implement, and maintain systems that secure Yelp’s AWS and Google Cloud Platform environments.
• Develop and enforce data security controls to support privacy initiatives.
• Manage system-level access controls and tiered access for internal digital assets.

Yelp's engineering culture values individual authenticity and encourages creative solutions. They focus on helping users, growing as engineers, and having fun in a collaborative environment.

• Architect, implement, and maintain cloud security controls across AWS and GCP.
• Take full ownership of security projects, driving them from initial concept through deployment.
• Continuously assess cloud environments using Cloud Security Posture Management (CSPM) platforms.

Xapo Bank is a fully distributed team of over 130 Xapiens that work remotely from 30+ countries around the world. They aim to provide economic freedom and wealth protection, searching the world for the best people and inspiring each other to learn and grow.

• Champion the teams to become best-in-class in cloud-based software development while promoting approaches that greatly improve customer experience.
• Leverage an obsession for the customer to lead and maintain a world-class SaaS, PaaS, IaaS, Cloud Infrastructure.
• Own the build & deploy lifecycle; drastically reduce build, deploy & rollback times while simultaneously reducing risk and exposure.

CentralReach is a leading provider of autism and IDD care software for Applied Behavior Analysis (ABA), multidisciplinary therapy, and special education. Recognized as one of the best places to work over 10 times, CentralReach's culture is centered around impact, inclusion, and flexibility.