Braze4 months ago

Senior Cloud Security Engineer

Braze

$128,842–$232,200 year

Hybrid · New York City, New York, United States

New York City, New York, United StatesHybridFull Time$128,842–$232,200 yearSenior LevelNot SpecifiedCustomer Engagement PlatformLarge

Type

Full Time

Level

Senior Level

Education

Not Specified

Company size

Large

Industry

Customer Engagement Platform

Job Summary

Senior Cloud Security Engineer to design secure cloud architectures across AWS, GCP, and Kubernetes; implement end-to-end security controls across cloud assets and CI/CD pipelines; lead vulnerability management and remediation using tools like Tenable and CSPM/CWPP; manage and optimize security tooling (CrowdStrike, CSPM, SIEM); perform threat modeling, incident response, and cloud forensics; secure Infrastructure-as-Code deployments and CI/CD automation with Python and SOAR; enhance cloud logging, monitoring, and operational visibility; continuously assess security posture and drive risk reduction and hardening across AWS and GCP.

Required Qualifications

5+ years of experience in Cloud Security, Infrastructure Security, or DevSecOps in a product-focused company
Demonstrable, expert level skills in modern enterprise networking
Expert-level knowledge of AWS security, including IAM, control plane security, network controls, logging, monitoring, and cloud-native security services
Strong understanding of GCP security, with Azure familiarity as a plus
Significant experience with self-managed Kubernetes/K8s
Hands-on experience with CrowdStrike, Tenable, and native cloud CSPM/CWPP tooling
Proven track record as an incident responder in cloud environments
Strong understanding of run-time security, CSPM concepts, cloud forensics, and vulnerability management workflows
Deep operational experience with IAM, RBAC, and integrations with external identity providers
Experience securing CI/CD pipelines and Infrastructure-as-Code (Terraform preferred)
Strong Python skills for automation and SOAR workflows
Knowledge of securing distributed systems, including experience with self-managed databases such as MongoDB
Familiarity with common security frameworks and regulations (SOC 2, ISO 27001, NIST), and understanding how they apply to cloud environments
Ability to articulate risk clearly and provide actionable mitigation strategies to engineering teams
Strong knowledge of patch management, base image hardening, and version management in containerized and VM-based environments
An excellent candidate will have hands-on experience securing large-scale, high-throughput distributed systems
Demonstrated expertise in cloud forensics, including investigations across AWS or GCP
Experience managing or operating enterprise-scale CSPM programs
Experience contributing to SOAR pipelines or building automated remediation systems
Prior experience in the SaaS space
Contributions to open-source cloud or security projects
Published research, CVEs, conference talks, or community-led cloud security work
Experience conducting or integrating cloud penetration testing or adversarial simulation techniques

Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.

Hiring someone like this?

Get your role in front of qualified candidates on Sorce.

Get started