Senior Cloud Security Engineer

Braze

$128,842–$232,200 year

Hybrid · New York City, New York, United States

EXPIREDNew York City, New York, United StatesHybridFull Time$128,842–$232,200 yearSenior LevelNot SpecifiedCustomer Engagement PlatformLarge

Type

Full Time

Level

Senior Level

Education

Not Specified

Company size

Large

Industry

Customer Engagement Platform

Job Summary

Senior Cloud Security Engineer at Braze responsible for designing secure cloud architectures across AWS, GCP, and self-managed Kubernetes; implementing and improving end-to-end cloud security controls in cloud-native environments; leading vulnerability management workflows; managing security tooling (CrowdStrike, CSPM/CWPP tooling, SIEM); performing threat modeling, incident response, cloud forensics, and run-time security; securing and supporting IaC and CI/CD automation; developing Python-based automation and SOAR workflows; enhancing logging, monitoring, and operational visibility; and continuously assessing and hardening cloud posture while reducing risk. The role requires deep experience securing large-scale cloud platforms, strong IAM/RBAC expertise, and the ability to translate complex threat scenarios into actionable guidance for engineering and product teams. Strong candidate attributes include proven incident response in cloud environments, familiarity with security frameworks (SOC 2, ISO 27001, NIST), and experience in SaaS environments, with a pay range in the United States between $128,842 and $232,200 starting annually plus OTE ranges.

Required Qualifications

5+ years of experience in Cloud Security, Infrastructure Security, or DevSecOps in a product-focused company
Expert-level knowledge of AWS security (IAM, control plane security, network controls, logging, monitoring)
Strong knowledge of GCP security; Azure familiarity a plus
Significant experience with self-managed Kubernetes
Hands-on experience with CrowdStrike, Tenable, and native CSPM/CWPP tooling
Proven incident responder in cloud environments
Strong understanding of run-time security, CSPM concepts, cloud forensics, and vulnerability management workflows
Experience securing CI/CD pipelines and Infrastructure-as-Code (Terraform preferred)
Strong Python skills for automation and SOAR workflows
Knowledge of securing distributed systems and self-managed databases (e.g., MongoDB)
Familiarity with SOC 2, ISO 27001, NIST frameworks
Ability to articulate risk and provide actionable mitigation strategies to engineering teams
Experience with patch management, base image hardening, and version management in containerized and VM environments
Cloud security architecture design experience across AWS, GCP, and Kubernetes environments
Experience contributing to SOAR pipelines or building automated remediation systems
Prior experience in the SaaS space
Contributions to open-source cloud or security projects
Published research, CVEs, talks, or community cloud security work
Experience conducting cloud penetration testing or adversarial simulations

This role has closed. Sorce can match you with similar open roles and apply on your behalf.

Hiring someone like this?

Get your role in front of qualified candidates on Sorce.

Get started