Cloud Security Engineer

Summary

Join Workato as a Security Engineer and be responsible for incident management and response, investigating security alerts, developing and implementing detection and mitigation strategies, automating workflows, and collaborating with cross-functional teams. You will leverage scripting skills (Python, Bash) and SOAR/SIEM platforms. The role requires experience in cloud security (AWS preferred), incident response, and familiarity with IaC tools. Strong communication and problem-solving skills are essential. Workato offers a flexible and dynamic work environment with numerous benefits.

Requirements

• 2-4 years of experience in similar SOC related roles, explicitly in responding to and actioning on security incidents or Security operations
• Deep understanding of cloud security principles with hands-on experience in AWS (preferred), Azure, or GCP
• Experience analyzing, triaging, and remediating common information security incidents
• Understanding of common attacker tactics, tools, and techniques
• Experience responding to security incidents on Kubernetes
• Skilled in scripting (Python, PowerShell) for automating security workflows
• Experience integrating SIEM, SOAR, EDR, and CASB tools for end-to-end threat detection and response
• Strong communication and documentation skills with a collaborative approach to cross-functional engagement
• Comfortable working with Mac OS, Linux, and Windows environments
• Familiarity with AI-driven security automation, including use of LLMs or AI workflows for automated threat detection and response

Responsibilities

• Responsible for incident management and response within Security Operations
• Investigate security alerts and perform deep analysis on security incidents
• Develop and implement detections and mitigation strategies for security threats
• Automate detection and response workflows using SOAR/SIEM platforms
• Implement custom security automation using scripting (Python, Bash) or Workato recipes
• Collaborate with Product Engineering, DevOps, and Business Technology teams to align security initiatives with business objectives
• Familiarity with Infrastructure as Code (IaC) tools like Terraform and CloudFormation, including integration with IaC scanning tools
• Participate in on-call rotation to provide coverage for security incidents
• Contribute to the development and enhancement of Workato’s AI-driven security automation initiatives

Preferred Qualifications

• Familiar with cloud governance tools (e.g., Cloud Custodian, Stacklet). Hands-on experience in crafting custom policies as code tailored to the company security landscape is a plus
• Familiarity with security Iac tools. Hands-on experience with IaC security, including scanning tools and CI/CD security best practices is a plus
• Relevant certifications such as Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC) or Computing Technology Industry Association Security (CompTIA Sec+), AWS Certified Security Specialty (preferred), Azure Security Engineer, or GCP Professional Cloud Security Engineer are preferred
• Strong problem-solving and analytical skills with an automation-first mindset
• Excellent communication and collaboration skills to work across teams
• Ability to work autonomously in a fast-paced, cross-functional environment and comfortable with ambiguity