What you will do
- Design, deploy, and maintain secure multi-cloud architectures across Microsoft Azure, AWS, and GCP, adhering to Zero Trust principles and internal risk frameworks;
- Engineer unified security policies and configuration baselines using Infrastructure as Code (IaC) to prevent misconfigurations while preserving a high-velocity developer experience;
- Secure containerized workloads and Kubernetes (K8s) clusters, implementing strict network policies, pod security standards, and secure ingress/egress controls;
- Leverage Cloud Security Posture Management (CSPM) platforms, heavily utilizing Wiz, to continuously monitor infrastructure and ensure security data is accessible for vulnerability management systems and automated triage agents;
- Architect and manage complex Identity and Access Management (IAM) solutions, implementing robust Role-Based Access Control (RBAC), least-privilege policies, and federated identity protocols;
- Ensure all cloud infrastructure strictly adheres to financial industry regulations and evolving internal governance frameworks;
- Collaborate directly with DevSecOps and AppSec teams to embed infrastructure security checks seamlessly into CI/CD pipelines;
- Act as a subject matter expert for product engineering squads, translating complex security mandates into actionable, scalable platform solutions.
Must haves
- 5+ years of experience in cybersecurity, platform engineering, or cloud architecture, with at least 2+ years operating within highly regulated enterprise environments;
- Deep, hands-on expertise in securing multi-cloud environments, specifically Microsoft Azure and AWS, including networking and native security tooling, with exposure to GCP;
- Advanced proficiency in writing, reviewing, and securing Terraform and integrating IaC into automated deployment pipelines;
- Extensive experience deploying, tuning, and utilizing APIs from modern CNAPP/CSPM platforms, specifically Wiz, to drive infrastructure security metrics and automation;
- Proven capability in securing Kubernetes ecosystems, Docker, and service meshes;
- Proficiency in at least one modern scripting or programming language for automation and API integrations, such as Python or Go;
- Strong understanding of enterprise IAM concepts and protocols, including OAuth 2.0, SAML, and Active Directory federation;
- Upper-intermediate English level.
Nice to haves
- Experience securing AI workloads or utilizing LLMs/AI-assisted tooling to automate infrastructure threat modeling and remediation runbooks;
- Prior experience building platforms subject to strict financial compliance standards, including PCI-DSS, SOC2, and ISO 27001;
- Industry-recognized cloud security certifications such as AWS Certified Security – Specialty, Microsoft Certified: Cybersecurity Architect Expert, CISSP, or CCSP;
- Strong familiarity operating within Agile/Scrum delivery models and utilizing Jira and Confluence for epic and sprint tracking.
We are looking for a Senior Cloud Security Engineer to secure multi-cloud infrastructure across Azure, AWS, and GCP within a highly regulated financial services environment. You will architect federated IAM models, build automated security guardrails using Terraform and CSPM platforms including Wiz, secure Kubernetes workloads, and integrate security controls into CI/CD pipelines — all while ensuring cloud security telemetry feeds intelligent governance and automated agent workflows. The role operates under Zero Trust principles and strict financial industry compliance requirements.
If you’re looking for a place to grow, make an impact, and work with people who care, we’d love to meet you!
About the role
The benefits of joining us
Professional growth
Accelerate your professional journey with mentorship, TechTalks, and personalized growth roadmaps
Competitive compensation
We match your ever-growing skills, talent, and contributions with competitive USD-based compensation and budgets for education, fitness, and team activities
A selection of exciting projects
Join projects with modern solutions development and top-tier clients that include Fortune 500 enterprises and leading product brands
Flextime
Tailor your schedule for an optimal work-life balance, by having the options of working from home and going to the office – whatever makes you the happiest and most productive.
Your AgileEngine journey starts here
2 min
Tell us about yourself
2 sec
Confirm requirements
30 - 60 min
Pass a short test
5 min
Record a short video
→ Introduce yourself on a video, instead of waiting for an interview
Live interview
Ace the technical interview with our team
→ Schedule a call yourself right away after your video is reviewed
Live interview
Final interview with your team
→ Get to know the team you will be working with
Get an offer
As quick as possible
