Cloud Security Engineer

About the Role

As part of the Security Team, the successful candidate will play a key role in identifying and responding to security issues, vulnerabilities, and incidents. This involves developing and implementing security systems, such as CSPM, infrastructure as code, and secrets management, to secure and harden ClickHouse's cloud infrastructure.

The position demands a strong understanding of cloud security principles and practices, as well as experience in securing large-scale customer-facing cloud infrastructures based on Kubernetes. The ideal candidate will have expertise in common cloud-based DevOps practices, including CI/CD, infrastructure as code, and secrets management, along with development and automation experience.

What You Will Do

• Secure cloud infrastructure supporting ClickHouse products and services across AWS, GCP, and Azure
• Collaborate with product and engineering teams to ensure safe and secure use of public cloud infrastructure and resources
• Develop and implement security systems, such as CSPM, infrastructure as code, and secrets management
• Identify and respond to security issues, vulnerabilities, and incidents
• Develop processes, tooling, and automation to scale security processes and mitigate risks to the business
• Conduct regular security audits and compliance checks
• Collaborate with cross-functional teams to implement security best practices
• Participate in incident response and remediation efforts
• Stay up-to-date with the latest cloud security threats and trends
• Implement measures to enhance the security posture of ClickHouse's cloud infrastructure

What We Are Looking For

• Strong knowledge of and experience with multiple cloud service providers (AWS, GCP, Azure)
• Experience securing large-scale customer-facing cloud infrastructures based on Kubernetes
• Expertise in common cloud-based DevOps practices (e.g., CI/CD, infrastructure as code, secrets management)
• Development and automation experience
• Experience with security systems such as CSPM, infrastructure as code, and secrets management
• Strong understanding of cloud security principles and practices
• Ability to work in a fast-paced environment and adapt to changing priorities
• Excellent communication and collaboration skills

Nice to Have

• BS, MS, or PhD in Computer Science or a related field
• Previous contributions to open-source projects
• Security or cloud-related certifications (AWS, GCP, Azure)
• Experience with containerization technologies (e.g., Docker)
• Familiarity with agile development methodologies

Benefits and Perks

• Competitive salary
• Opportunity to work with a fast-growing private cloud company
• Collaborative and dynamic work environment
• Professional development and growth opportunities
• Flexible work environment with remote work options
• Access to cutting-edge technologies and tools
• Comprehensive benefits package (health, dental, vision)
• Generous PTO policy
• 401(k) or similar retirement plan

• Ensure you have hands-on experience with cloud security platforms and tools, and be ready to provide specific examples of your experience.
• Highlight your understanding of cloud security principles and compliance frameworks.
• Showcase your ability to automate security processes and implement infrastructure as code.
• Prepare to discuss your experience with incident response and how you've handled security incidents in the past.
• Consider obtaining or highlighting relevant cloud security certifications to enhance your application.
• Be prepared to back up your claims with concrete examples or a portfolio of your work, especially if you're claiming expertise in areas like DevOps or security system development.
• Don't underestimate the importance of soft skills; emphasize your ability to communicate complex security concepts to both technical and non-technical stakeholders.