Senior Cloud Security Engineer

Summary

Join FLYR's Cloud Security team as a Senior Cloud Platform Security Engineer to secure cloud platforms and infrastructure. You will design, implement, and run cloud and infrastructure-level security controls, using Terraform and collaborating with DevOps and Development teams. The role requires experience securing public cloud environments (GCP, AWS, Azure), DevOps practices, and CI/CD automation. Responsibilities include configuring security monitoring systems, integrating with alerting systems, and supporting remediation of security issues. You will also contribute to security playbooks and incident response. This position offers a regular employment contract, equity in a Series D startup, flexible hours, and various benefits.

Requirements

• Minimum 5+ years of Cloud Engineer or Cloud Security Engineering working experience
• Proficient in one of the major cloud providers such as Google Cloud Platform (GCP), Amazon Web Services (AWS), or Microsoft Azure. It is advantageous to have significant experience in GCP as that is our primary cloud provider
• Solid understanding of cloud networking concepts, subnets, routing, load balancing, firewalls, and cloud security
• Understanding of general security concepts like CIA triad, SDLC, security risk & risk treatment options, threat actors, types of security controls
• Experience writing Hashicorp Terraform configurations and modules
• Experience in DevOps and GitOps models with infra-as-code
• Understanding of landing zones, cloud-native security, monitoring and logging tools
• Experience with container related technologies (GKE is a benefit) and CICD tools - GitHub Actions, Cloud Build, Cloud Deploy, build pipelines, container repos, etc
• Proficient in at least one scripting language (i.e. Bash, Python)
• Strong analytical, problem solving and organizational skills
• Strong collaboration skills and ability to work in a global remote team

Responsibilities

• Collaborate with Cloud Security colleagues, partner with Software Development & Devops teams to ensure that platform-level security controls are in place and effective
• Deploy, configure and support cloud-native security tooling & standardized non-cloud security solutions
• Build automation to perform security and compliance at scale in the cloud
• Oversee & actively support remediation of identified security issues and hardening initiatives (Cloud platform, virtual machine & container levels)
• Review, design, implement & support proper operations of cloud network security controls (cloud FW, WAF & IPS)
• Review & support improvements of IAM security controls
• Assist with securing CI/CD pipelines and designing early warning controls for early stages of SDLC process
• Support consolidation of security tooling
• Lead integration of security tooling and establishment of standardized security processes
• Contribute to creation of standardized security response playbooks
• Identify, communicate & explain security risks to DevOps, Development or Product teams
• Be part of security incident response team

Benefits

• Regular employment contract
• Equity in Series D startup with high growth potential
• Flexible working hours
• Complimentary Breakfast/Lunch (in-office)
• Sports card
• Medical care
• Life Insurance
• Top-quality tech equipment
• Annual educational fund
• English classes