Sr. Infrastructure Security Engineer

About The Position

Requirements

• 5+ years of hands-on cloud or infrastructure security experience, with real production experience in both GCP and Azure.
• 5+ years of experience with security assessments, security design reviews, or threat modeling.
• Strong understanding of cloud fundamentals; IAM, networking, logging, monitoring, encryption and how security failures actually happen in cloud environments.
• Experience delivering comprehensive security solutioning through design, coding, configuration and deployment
• Solid Python skills for automation, integrations, and reducing manual security work.
• Practical experience using Terraform and security-as-code, including integrating security checks into CI/CD pipelines.
• Hands-on experience with Wiz or similar CNAPP tools, with the ability to distinguish real risk from noise and drive remediation.
• Experience writing or tuning detections in Chronicle SIEM and understanding how cloud threats show up in logs.
• Background in vulnerability management, including prioritization, remediation tracking, and working with engineering teams to get fixes shipped.
• Familiarity with penetration testing and using findings to improve systems, not just generate reports.
• Ability to explain risk clearly to engineers without jargon.
• Comfortable owning and driving projects end-to-end as an Individual Contributor or with a team, leveraging a highly collaborative environment.

Responsibilities

• Take ownership of cloud security work across GCP and Azure, from design through day-to-day execution, working closely with infrastructure, platform, data, and application teams.
• Run our data security and vulnerability management efforts, including DLP, sensitive data discovery, and remediation tracking across both cloud environments.
• Build and maintain security automation using IaC (Terraform) and CI/CD pipelines so security controls are consistent, auditable, and easy for engineering teams to adopt.
• Own and evolve our cloud security posture tooling (Wiz) tuning policies, investigating real risks, cutting down noise, and driving fixes that actually reduce exposure.
• Regularly review cloud configurations, identify gaps, and fix issues before they turn into incidents, while owning infrastructure security controls tied to PCI and SOC 1/2.
• Write and maintain clear cloud security standards and runbooks that engineers can actually follow.
• Improve detection and response by building practical detections and response playbooks in Chronicle SIEM.
• Act as a senior escalation point during incidents, helping teams triage, contain, and resolve cloud security issues.
• Mentor other engineers and help raise the overall security bar without creating friction or silos.

Benefits

• The opportunity to collaborate with a team of creative, fun, and driven colleagues on products that have an immediate and significant impact on people's lives.
• The opportunity to work in a fast-paced environment with experienced industry leaders.
• Flexible time off, comprehensive health coverage, competitive salary, paid parental leave, and other wellness benefits.
• A bevy of other perks including Udemy access, childcare assistance, pet insurance discounts, legal assistance, and additional discounts through Perkspot.
• The ability to work remotely in the United States.