Staff Cloud Security Engineer

Summary

Join LastPass as a Staff Cloud Security Engineer and collaborate with DevOps, CI/CD engineers, and the architecture team to implement and maintain security best practices across our infrastructure. You will leverage your expertise in security architecture to design, build, and securely operate products and services. Assess, design, and implement security processes and controls to meet security, compliance, and audit requirements. Conduct proactive research to identify emerging threats and attack vectors. Collaborate within a highly agile product security team and work cross-functionally to enhance security. LastPass offers a remote-first culture, competitive compensation, flexible PTO, generous parental leave, comprehensive health coverage, and continuous learning opportunities.

Requirements

• Proven experience working with AWS in a security-focused capacity
• Experience collaborating with engineering teams to "shift security left" and integrate security into the development lifecycle
• Hands-on experience with infrastructure as code (AWS CDK, CloudFormation, or Terraform)
• Strong knowledge of AWS security services and best practices for securing production environments (AWS IAM, Config, KMS, Secrets Manager, CloudWatch, CloudTrail, GuardDuty)
• Familiarity with version control, CI/CD, and issue tracking tools (GitLab, GitLab CI, Jira)
• Solid understanding of internet and computer networks (TCP/IP, TLS, VPN, etc.)
• Hands-on experience with Kubernetes, particularly securing workloads on AWS EKS
• Experience securing containerized workloads (Docker)
• Strong written and verbal communication skills in English
• A team-oriented mindset with a proactive and hands-on approach to problem-solving

Responsibilities

• Leverage your expertise in security architecture to help engineers design, build, and securely operate products and services from the ground up
• Assess, design, and implement security processes and controls to meet security, compliance, and audit requirements
• Conduct proactive research to identify emerging threats and attack vectors
• Collaborate within a highly agile product security team and work cross-functionally with other teams to enhance security across the organization

Preferred Qualifications

• AWS Certified Security – Specialty certification or a similar credential
• Experience with GitOps, CSPM, KSPM, Kubernetes (K8s) admission control, and supply chain security

Benefits

• Remote-first culture
• Competitive compensation
• Flexible Paid Time Off policies , including but not limited to: Quarterly Self-Care Days (4 extra paid days off annually) and Volunteer Days
• Generous parental leave
• Comprehensive health coverage , including dependents
• Home office setup support
• LastPass Families free account for up to 5 members
• Continuous learning and development opportunities , including an annual learning stipend to invest in your growth
• Peer-to-peer recognition through Motivosity
• Employee Assistance Program for well-being support
• Remote work stipend to support your home office needs
• Short-Term or Remote-Centric Work Arrangements for added flexibility