Senior Cloud Security Engineer II

Remote $112k–$188k senior 16 days ago full-time quality 8.8/10

Role in brief

Incode is seeking a Senior Cloud Security Engineer II to lead the architecture and implementation of cloud security across multi-cloud environments. This role involves identifying security challenges, building controls to prevent vulnerabilities, and managing security tools. It requires strong experience with public cloud infrastructure, Kubernetes, and Linux, and is suitable for engineers who can drive security initiatives and mentor peers.

AWSTerraformKubernetesPublic CloudSecurity toolsProgramming languagesScripting languagesAzureNetwork SecurityContainer securitySIEMLinux expertise

About the role

This role focuses on architecting and operationalizing cloud security within a complex, multi-cloud, and hybrid environment. The engineer will be responsible for identifying security challenges, implementing hands-on recommendations, and building controls to detect, prevent, and correct cloud vulnerabilities. This includes designing infrastructure to support the security team's mission, ensuring well-architected fundamentals like logging and identity controls.

A key part of the work involves building, deploying, and managing production security tools and services for monitoring networks, endpoints, and cloud workloads. The engineer will also maintain and evolve infrastructure using technologies such as Terraform and Kubernetes, and contribute to production security infrastructure and platforms like GuardDuty and AWS Config. The role emphasizes facilitating security within the cloud infrastructure for applications and customer data.

Success in this position means taking ownership of security initiatives, from discovery to implementation, and ensuring resilience and security by default across all cloud environments. The engineer will also be expected to help peer engineers grow their security knowledge, indicating a leadership aspect to the role beyond technical execution.

The listed salary for this Senior Cloud Security Engineer II role ranges from $112,000 to $188,000 USD.

Skills that matter here

  • AWS: Experience with AWS security tools like GuardDuty, AWS Config, and CloudTrail is needed for configuring and managing security infrastructure.
  • Terraform: This tool is used for building, maintaining, and evolving reliable and low-touch infrastructure.
  • Kubernetes: The role requires a detailed understanding of Kubernetes components and cloud-native security, including building and securing clusters.
  • Public Cloud: The engineer will deploy and secure services on public cloud infrastructure and work with at least one common provider like AWS, GCP, or Azure.
  • Cloud Security: This role is centered on architecting and operationalizing cloud security across multi-cloud environments.
  • Linux expertise: Strong knowledge of Linux environments is required for this position.

Who this role suits

  • A person with at least five years of experience securing services on public cloud infrastructure.
  • Someone who understands security weaknesses, exploits, and mitigations and can analyze network traffic for anomalies.
  • An individual fluent in programming or scripting languages, capable of building and customizing security tools.
  • A collaborative communicator who can mentor peers and drive security initiatives across teams.

From the employer

What You’ll Own & Drive

  • Discover the top security challenges we face and partner with teams across the company to be hands-on in implementing your security recommendations.
  • Build security controls that detect, prevent, and correct cloud vulnerabilities in our very complex, multi-cloud, hybrid and private cloud environment.
  • Architect and design infrastructure to support the security team’s mission and ensure well-architected fundamentals (logging, identity and access controls, etc).
  • Build, deploy, and manage production security tools and services to monitor networks, endpoints, and cloud workloads.
  • Build, maintain and evolve a reliable and low-touch infrastructure using technologies such as Terraform, Kubernetes, and immutable images.
  • Facilitate the security baked into our cloud infrastructure for our applications and customer data.
  • Contribute changes to production security infrastructure and platforms (e.g., configure GuardDuty or AWS Config, Kubernetes, VPNs, Secrets Manager, etc).
  • Help your peer engineers grow their own security reasoning and knowledge.

Your Background

  • 5+ years experience deploying and securing services on public cloud infrastructure.
  • Detailed understanding of cloud and network security.
  • Detailed understanding of Kubernetes components and cloud-native security.
  • Strong Linux expertise - you live and breathe Linux environments.
  • Fluency in one or more programming or scripting languages.
  • Experience building, deploying, and customizing security tools to address threats and lower risk: CSPM, vulnerability scanners, static analyzers, web application firewalls, IDS/IPS, endpoint security monitoring, etc.
  • Knowledge of networking and web protocols (TCP/IP, HTTP, TLS, REST), and the ability to analyze traffic to find anomalies.
  • Depth and experience in modern cloud technology components and deployment patterns - virtual machines, containers, Kubernetes (including building and securing clusters from scratch), serverless, and infrastructure as code.
  • Depth and experience with at least one common cloud service provider: AWS, GCP, Azure.
  • Understanding of security weaknesses, exploits, attacks and mitigations.
  • Experience with most of the following: AWS security tools (GuardDuty, AWS Config, CloudTrail), Terraform, Kubernetes, Containers, Open Policy Agent, Secrets Management, SIEM.
  • Excellent collaborative skills.
  • Outstanding written and verbal communication.

Why Incode?

  • Mission with Meaning - Shape how billions of people prove identity - safely, simply, and ethically.
  • Rocket-Ship Growth - Join at an inflection point where your strategies will compound in value for years.
  • Elite Team & Backing - Work a truly global with top engineers, designers, and investors who share your ambition to dominate a category.
  • Ownership & Autonomy - Operate like a founder with the resources of a unicorn.
  • Global Impact - Every program you launch will reverberate across industries and continents.

Benefits & Perks:

  • Flexible Working Hours & Workplace.
  • Open Vacation Policy.

Questions about this role

What is the remote work policy for this role?

This is a remote position with flexible working hours and workplace.

What level of seniority is expected for this position?

This is a senior-level role, specifically a Senior Cloud Security Engineer II.

What is the salary range for this position?

The salary range for this role is between $112,000 and $188,000 USD.

Similar jobs

Before you apply

  • Legitimate employers never ask you to pay anything to apply or get hired.
  • Never share seed phrases or private keys. No real job needs them.
  • Do not install software ("test tasks", "trading tools", "video call clients") sent during hiring.
  • Check that the application page's domain really belongs to Incode.