Senior Cloud Security Engineer

Summary

Join Figment, a leading provider of Web3 blockchain infrastructure solutions, as a Cloud Security Engineer. You will play a crucial role in securing and maintaining our cloud infrastructure, working with AWS and GCP. Responsibilities include designing and implementing security controls, managing Kubernetes clusters, and ensuring infrastructure resilience and scalability. This full-time remote position requires a strong background in cloud security, DevOps, and platform engineering, along with experience in managing Kubernetes clusters and implementing security best practices. Figment offers a competitive compensation package, including a remote-first work environment, comprehensive health benefits, generous PTO, and professional development opportunities. We are seeking a security-first individual who thrives in a fast-paced environment and is passionate about contributing to the growth of the Web3 ecosystem.

Requirements

• 3+ years of experience in Cloud Security, DevOps, or Platform Engineering
• Strong experience with AWS and/or GCP security principles
• Up-to-date knowledge of cloud security advisories and vulnerabilities
• Hands-on experience managing Kubernetes clusters and implementing security best practices
• Knowledge of container security, runtime protection, and Kubernetes network policies
• Experience engineering and maintaining Identity and Access management systems and RBAC
• Experience in security reviews of cloud applications
• Proficiency in scripting for automation
• Strong technical writing and communication skills

Responsibilities

• Design, implement, and manage security controls for cloud infrastructure in AWS and GCP
• Develop and enforce security policies, IAM roles, and least privilege access across cloud environments
• Implement and maintain cloud security monitoring, logging, and alerting using tools like AWS GuardDuty, Security Hub, and GCP Security Command Center
• Secure Kubernetes workloads by implementing RBAC, network policies, and container runtime security
• Conduct regular cloud security assessments, including misconfiguration reviews, vulnerability management, and compliance checks
• Deploy and maintain cloud infrastructure using code
• Design secure CI/CD pipelines, ensuring that security scanning is integrated into build and deployment processes
• Automate deployments and infrastructure updates with CI/CD pipelines

Preferred Qualifications

• Degree in a technical field (Computer Science, Information Technology, or related)
• Proficiency in Python or other scripting languages
• Knowledge of Infrastructure-as-Code (IaC) tools like Terraform/CloudFormation is a plus
• Knowledge of Configuration-as-Code (CaC) tools like Chef, Salt, Ansible
• Experience managing pipelines and workflows via CI/CD
• Working knowledge of cloud platforms, especially AWS, GCP, Kubernetes, Ansible and GitHub
• Understanding of blockchain and crypto technology, particularly the unique security risks in Web3, blockchain protocols, and smart contracts
• Industry certifications such as Certified Kubernetes Administrator (CKA), Certified Kubernetes Application Developer (CKAD), AWS Certified Solutions Architect, AWS Certified SysOps Admin, AWS Security Specialty

Benefits

• 100% remote-first environment
• 4 weeks of PTO that kick in day one, with an additional 1 week of flex days
• Extended company-paid health benefits that kick in day one
• Best in class parental leave and flexible arrangements
• A home office stipend to create a space that you enjoy working in
• Monthly Wifi reimbursement
• A yearly Learning & Development budget
• 401K (US) or RRSP match (Canada)
• Stock Options in the company
• A competitive bonus (based on company performance) that is distributed bi-annually
• Annual onsite company gatherings and retreats to inspire team bonding, collaboration, and fun!