Cloud Security Engineer

About the Role

Addi is a leading financial platform that is changing the way people think about payments, shopping, and banking. The company is committed to building a culture of innovation and collaboration, and the cloud security engineer role is no exception. As a member of the team, you will be expected to collaborate with cross-functional teams to identify and mitigate cloud security risks, and to communicate complex technical ideas to non-technical stakeholders.

The cloud security engineer role reports to the Director of Engineering, and will work closely with the engineering and operations teams to ensure that cloud security is integrated into every aspect of the company's operations. If you are a motivated and experienced cloud security professional with a passion for building secure and scalable cloud infrastructure, this role may be the perfect fit for you.

What You Will Do

• Design and implement a comprehensive cloud security program that meets the company's security and compliance requirements
• Develop and maintain cloud security architectures, including network segmentation, access controls, and data encryption
• Collaborate with cross-functional teams to identify and mitigate cloud security risks, including vulnerability management and penetration testing
• Develop and implement cloud security policies and procedures, including incident response and disaster recovery plans
• Conduct regular security audits and risk assessments to ensure compliance with industry standards and best practices
• Develop and maintain cloud security awareness training programs for employees
• Collaborate with the engineering team to integrate security into the development pipeline
• Develop and maintain relationships with key stakeholders, including engineering, operations, and compliance teams
• Stay up-to-date with the latest cloud security threats and trends, and apply this knowledge to improve the company's cloud security posture

What We Are Looking For

• 5+ years of experience in cloud security, with a focus on AWS infrastructure
• Deep AWS security expertise, including experience with AWS security services such as IAM, Cognito, and Inspector
• Operational experience with CNAPP and CSPM, including experience with cloud security platforms such as Palo Alto Prisma Cloud or Check Point CloudGuard
• Strong understanding of cloud security risks and mitigations, including experience with vulnerability management and penetration testing
• Experience with cloud security compliance frameworks, including PCI-DSS, HIPAA, and GDPR
• Strong communication and collaboration skills, with experience working with cross-functional teams
• Experience with Terraform and secure infrastructure as code (IaC) practices
• Experience with compliance and audit support, including experience with security audits and risk assessments

Nice to Have

• Experience with cloud security automation tools, such as AWS CloudWatch or AWS CloudTrail
• Experience with incident response and disaster recovery planning
• Experience with security awareness training programs
• Experience with cloud security consulting or advisory services
• Certification in cloud security, such as AWS Certified Security - Specialty or Certified Cloud Security Professional (CCSP)

Benefits and Perks

• Competitive compensation package
• Meaningful ownership and impact on the company's cloud security posture
• Generous paid time off and holiday schedule
• 401k matching retirement plan
• Visa sponsorship for eligible candidates
• Four-day work week and flexible work arrangements
• Generous parental leave and family-friendly benefits
• Tuition reimbursement and professional development opportunities
• Relocation assistance for eligible candidates
• Access to cutting-edge cloud security tools and technologies
• Opportunity to work with a talented and motivated team of professionals

• Tip: Make sure to highlight your experience with AWS security services, such as IAM and Cognito, in your application and during the interview process.
• Tip: Be prepared to discuss your experience with cloud security risks and mitigations, including vulnerability management and penetration testing.
• Tip: Showcasing your ability to communicate complex technical ideas to non-technical stakeholders will be beneficial in this role.
• Tip: Having experience with Terraform and secure IaC practices is a significant plus, so be sure to highlight this in your application.
• Tip: Research Addi's company culture and values, and be prepared to discuss how your skills and experience align with their mission and goals.
• Tip: Be prepared to provide examples of your experience with cloud security compliance frameworks, such as PCI-DSS or HIPAA, and how you have applied this knowledge in previous roles.