about 4 hours ago
Responsibilities
- Own the detection and response layer and cloud infrastructure security.
- Remediate credential exposure across AWS/GCP production environments.
- Deploy and tune CSPM across all accounts.
- Embed IaC security gates into CI/CD processes.
- Implement Zero Standing Privileges via JIT/CIEM.
- Deploy the SIEM platform and author detection rules.
- Own the incident response lifecycle and develop playbooks.
- Produce and maintain continuous evidence for SOC 2 audits.
- Publish monthly security reports and maintain vulnerability SLA compliance.
Requirements
- 5+ years of hands-on security engineering experience.
- Demonstrable depth in cloud security or security operations.
- Proven ability to build security infrastructure from scratch.
- Strong knowledge of MITRE ATT&CK and CIS Benchmarks.
- Familiarity with SOC 2 TII control requirements.
- Experience using LLMs in security workflows.
Benefits
- Employee Stock Ownership Plan (ESOP) for long-term success.
- Work in a fast-moving, product-driven environment.
- Access to cutting-edge AI tools for productivity.
- Choice of top-spec laptops and high-performance workstations.
- Annual company offsites and team events.
Tech Stack
AWSGoogle Cloud Platform