Senior Security Software Engineer - Cloud & Infra Security

Job Summary

Required Qualifications

• Expert level experience in AWS cloud account architecture.
• Expert level knowledge in Network Security, including experience with AWS networking primitives: Security Groups, Network Access Control Lists (NACLS), Subnetting, Routing, and egress traffic filtering mechanisms.
• Expert level proficiency in Identity & Access Management (IAM) Security, including experience with architecting AWS IAM roles & policy architectures for both human and machine access.
• Expert level communication skills and the ability to work effectively across teams.
• Expert level experience deploying and maintaining configurations and infrastructure using Terraform.
• Expert level experience with modern CSPM and CWPP tools (e.g., Wiz, Orca, Prisma, or Rapid7).
• Intermediate level experience with Secrets / key Management Platforms (e.g., AWS KMS, AWS Secrets Manager, Hashicorp Vault).
• Expert level experience in building and implementing IaC governance strategies that combine security best practices while enabling developer productivity.
• Intermediate level experience in architecting & managing Spire (Spiffe) and Service Mesh services.
• Intermediate level proficiency in Python or Go, and Bash scripting.
• Intermediate level experience in container & operating system hardening.
• Intermediate level experience in building & maintaining Web Application Firewalls.
• Intermediate level familiarity with security frameworks (e.g., PCI DSS, CIS, ISO 27001, NIST CSF).

Desired Qualifications

• Intermediate level experience in architecting & implementing internal PKI & Secrets Management services.
• Intermediate level knowledge of Kubernetes (K8s) Security foundations, including admission controllers, K8s Network Policies, K8s RBAC, and K8s Ingress architectures.
• Intermediate level proficiency in DDoS mitigation techniques using AWS Shield, CDN traffic scrubbing, and origin protection mechanisms.
• Intermediate level proficiency in Azure.