Senior Trust Operations Cloud Security Engineer

 

Job summary

Join our Security Operations team as a Senior Cloud Engineer, playing a key role in designing, implementing, and maintaining our cloud environments. In this role, you will work closely with Engineering, Compliance, Security, and DevOps teams to ensure our cloud infrastructure is secure, scalable, and optimized. We are seeking a highly skilled cloud professional with deep experience in AWS and expertise in CNAPP/CSPM tools to manage cloud-native security, risk monitoring, and compliance. You will be responsible for architecting cloud solutions, integrating security platforms, and creating automated workflows to enhance visibility, protect workloads, and support the organization’s strategic cloud initiatives.

 

What you will do

• Design, implement, and maintain secure, scalable, and highly available cloud architectures in AWS to support the Trust Operations team’s initiatives.
• Provide expert guidance and strategic recommendations on cloud solutions across AWS and Azure to ensure alignment with organizational goals and best practices.
• Integrate, configure, and optimize Wiz to enhance visibility and risk management across the cloud ecosystem.
• Lead cloud governance, architecture reviews, and best-practice enforcement for cloud resource configuration and identity management.
• Partner with Security, Compliance, DevOps, and Engineering teams to automate cloud infrastructure and compliance monitoring.
• Ensure adherence to cloud security frameworks such as WebTrust, SOC2, NIST 800-53, and ISO 27001.
• Analyze cloud workloads to identify opportunities for optimization, cost efficiency, and improved performance.
• Serve as a subject matter expert (SME) for AWS networking, IAM, monitoring, and multi-account strategies for the Trust Operations team.
• Provide technical leadership and mentorship to junior engineers.

 

What you will have

• 5+ years of experience in security operations or related field.
• Advanced knowledge of security operations design concepts and principles.
• 5+ years of experience in cloud architecture or engineering, with a focus on AWS or Azure.
• Strong understanding of cloud security principles and hands-on experience with CNAPP, CSPM, or CWPP platforms.
• Proficiency in AWS CloudFormation, Terraform, and Python or PowerShell scripting.
• Experience with IAM, VPC design, Lambda, ECS/EKS, and CloudTrail/CloudWatch.
• Familiarity with cloud-based identity providers, SSO, SAML, etc.
• Excellent communication and collaboration skills across technical and business teams.
• Excellent written and verbal communication skills.
• Strong customer service orientation and interpersonal skills.
• Proficiency in performing in-depth log analysis.
• Background in threat detection, incident response, or security automation within cloud environments.

 

Nice to have

• Master’s degree in a technical discipline
• 2+ years in a managerial or leadership role
• Experience as point of escalation
• Experience in Information Security
• Experience with SIEM technologies, preferably Splunk
• Experience with ZScaler products and Web Application Firewall (WAF) technologies
• Proficiency in vulnerability management software, preferably Tenable
• Familiarity with endpoint detection and response software, CrowdStrike preferred
• Experience with scripting languages such as Python, Go, PowerShell, Bash, etc.
• Designed, built, and implemented enterprise-class security systems
• AWS Certified Solutions Architect – Professional or equivalent certification.
• CISSP certification or willingness and ability to obtain it if not already completed
• Experience with security, compliance, privacy frameworks and audits (e.g. ISO27001, NIST, GDPR, CCPA, WebTrust, SOC2)
• Knowledge of penetration testing practices and principles

 

Benefits

• Generous time off policies
• Top shelf benefits
• Education, wellness and lifestyle support

 

#LI-SD1