Cloud Security Engineer

As a Cloud Security Engineer on the DevOps team, you will design and implement guardrails that let engineers move fast while staying safe. This is a hands-on role focused on cloud platform security, automated monitoring, and developer enablement. You’ll work closely with DevOps and engineering to embed security into our infrastructure and CI/CD pipelines so that security is built-in, not bolted-on. You will enforce secure defaults across AWS/GCP with least-privilege and zero-trust, using policies-as-code and cloud-native guardrails. You'll manage secrets, keys, and service accounts with short-lived credentials, automated rotation, and Cloud KMS/Vault or workload identity federation. You'll build automated monitoring and alerting pipelines for cloud logs and drive vulnerability and supply chain security by integrating IaC and dependency scanning into CI/CD. You'll also enable developers through paved-road tooling, docs, and knowledge sharing programs.