Staff Cloud Security Engineer

Summary

Join Assured, a company modernizing the insurance industry, as a Staff Cloud Security Engineer. You will play a critical role in designing, implementing, and managing the security of our cloud infrastructure using AWS. Collaborate with various teams to identify and mitigate risks, ensuring secure and scalable systems. Responsibilities include designing secure cloud environments, developing security policies, performing security audits, and integrating security best practices into development pipelines. The ideal candidate possesses extensive experience in cloud security engineering, specifically with AWS, and expertise in Terraform and infrastructure-as-code. Assured offers a competitive compensation package, comprehensive healthcare, and various other benefits.

Requirements

• Experience in cloud security engineering or related roles, with a focus on AWS
• Expertise in Terraform and infrastructure-as-code best practices
• Strong knowledge of IAM policies, roles, and permission models in cloud environments
• Experience with endpoint security tools and strategies (e.g., antivirus, EDR, mobile device management)
• Proven track record of implementing security best practices in cloud environments, including network segmentation, encryption, and logging
• Familiarity with compliance standards such as SOC 2, ISO 27001, GDPR, and/or HIPAA
• Strong scripting and automation skills (e.g., Python, Bash, PowerShell, Typescript)
• Excellent problem-solving, communication, and collaboration skills

Responsibilities

• Design, implement, and manage secure cloud environments using AWS services
• Develop and enforce security policies, procedures, and controls for cloud resources, including IAM (Identity and Access Management) configurations
• Create and maintain Terraform infrastructure-as-code modules to automate the secure deployment of cloud resources
• Perform regular security audits, risk assessments, and vulnerability scans of cloud environments
• Collaborate with development teams to integrate security best practices into CI/CD pipelines and application development
• Implement and manage endpoint security solutions to protect user devices and ensure compliance
• Monitor cloud environments for threats, anomalies, and vulnerabilities, responding to incidents as needed
• Stay up-to-date on emerging security technologies, threats, and regulatory requirements, and recommend improvements to our security architecture
• Provide mentorship and guidance to Staff Engineers on cloud security practices

Preferred Qualifications

• Relevant certifications, such as AWS Certified Security – Specialty, CISSP, or GIAC Cloud Security Essentials (GCLD)
• Experience with security monitoring and incident response tools (e.g., AWS GuardDuty, Security Hub, Detective, WAF, CloudTrail, or SIEM solutions)
• Knowledge of Kubernetes security and containerization tools (e.g., EKS, Docker, Aqua Security)
• Experience with zero-trust architecture principles and implementation

Benefits

• Competitive Compensation: Enjoy a competitive salary and equity package!
• Comprehensive Health Care: Access to multiple medical plans with an HSA option and minimal out-of-pocket expenses. Certain plans covered 100%
• Dental Insurance: We protect those pearly whites
• Vision Insurance: Everyone can see clearly now at Assured
• Life Insurance: It's on the house! Provided at no cost to you
• Paid Time Off: Uncapped vacation days and paid holidays. Take that vacation!
• Family Leave: Maternity and paternity leave options
• Financial Wellness: 401(k) contribution with Assured contributing 3% of your income, even if you don't contribute
• Flexible Spending Accounts: Health and dependent care FSAs for pre-tax flexible spending