Cloud Security Engineer

MoonPay·Remote·Work From Anywhere
Cybersecurity
Excel

WFA Digital Insight

The demand for cloud security experts has skyrocketed, with a 25% increase in job postings over the past year. MoonPay, a leading unified payments platform, is seeking a skilled Cloud Security Engineer to fortify their cloud infrastructure. With the company's commitment to trust and compliance, this role is ideal for those passionate about building a secure and fair financial system. Before applying, candidates should be aware of the company's focus on cloud security, compliance, and innovation, as well as their commitment to diversity and inclusivity.

Job Description

About the Role

As a Cloud Security Engineer at MoonPay, you will be responsible for designing, implementing, and managing robust security controls and configurations for the company's cloud infrastructure. This includes performing threat modeling, developing secure infrastructure as code, and implementing cloud security monitoring. You will be part of a dynamic team of proactive defenders and inquisitive problem-solvers who are dedicated to fortifying MoonPay's cloud infrastructure.

The role entails collaborating with various stakeholders to embed security best practices throughout the infrastructure lifecycle. You will also be responsible for researching emerging cloud threats, crafting effective mitigation strategies, and empowering engineering teams with comprehensive training. The company's cloud infrastructure is built on Google Cloud Platform (GCP) and Amazon Web Services (AWS), and you will be working with cutting-edge tools like DataDog for cloud security monitoring and Terraform for secure infrastructure as code.

MoonPay is committed to trust and compliance, and this role is crucial in maintaining the company's high standards. The company is fully licensed in the U.S. and regulated across the UK, EU, Canada, and Australia, and it's essential that the Cloud Security Engineer is aware of these regulations and ensures compliance.

What You Will Do

  • Perform threat modeling of architectural infrastructure changes and new cloud infrastructure and Kubernetes deployments in GCP and AWS.
  • Design, implement, and manage robust security controls and configurations for GCP and AWS environments.
  • Develop and maintain secure infrastructure as code using Terraform and other tools.
  • Implement, manage, and enhance cloud security monitoring using DataDog, including alert configuration, response procedures, and customized rules.
  • Implement and manage Just-in-Time (JIT) access solutions for elevated privilege access to cloud resources.
  • Establish and manage the cloud incident management process and program.
  • Collaborate with engineering teams to embed security best practices throughout the infrastructure lifecycle.
  • Research emerging cloud threats and craft effective mitigation strategies.
  • Empower engineering teams with comprehensive training on cloud security and compliance.
  • Ensure compliance with regulatory requirements and company standards.

What We Are Looking For

  • 5+ years of experience in cloud security engineering, with a focus on GCP and AWS.
  • Strong knowledge of cloud security architecture, threat modeling, and security controls.
  • Experience with infrastructure as code tools like Terraform and CloudFormation.
  • Familiarity with cloud security monitoring tools like DataDog and CloudWatch.
  • Knowledge of compliance regulations such as PCI-DSS, GDPR, and HIPAA.
  • Strong collaboration and communication skills, with the ability to work with various stakeholders.
  • Experience with Kubernetes and containerization.
  • Strong problem-solving skills, with the ability to analyze complex security issues.
  • Bachelor's degree in Computer Science, Cybersecurity, or a related field.

Nice to Have

  • Experience with Excel and other productivity tools.
  • Knowledge of programming languages like Python, Java, or C++.
  • Familiarity with agile development methodologies and version control systems like Git.
  • Experience with DevOps tools like Jenkins, Docker, and Kubernetes.
  • Certification in cloud security, such as AWS Certified Security – Specialty or Google Cloud Certified – Professional Cloud Security Engineer.

Benefits and Perks

  • Competitive salary and benefits package.
  • Opportunity to work with a leading unified payments platform.
  • Collaborative and dynamic work environment.
  • Professional development opportunities, including training and certification programs.
  • Flexible work arrangements, including remote work options.
  • Access to cutting-edge technologies and tools.
  • Recognition and reward programs for outstanding performance.
  • Comprehensive health insurance and wellness programs.
  • Generous paid time off and holiday policy.

How to Stand Out

  • Tip: Make sure to highlight your experience with cloud security architecture, threat modeling, and security controls in your resume and cover letter.
  • When applying, be prepared to provide specific examples of your experience with infrastructure as code tools like Terraform and CloudFormation.
  • To stand out, show your passion for building a secure and fair financial system, and highlight your knowledge of compliance regulations such as PCI-DSS, GDPR, and HIPAA.
  • Be prepared to answer behavioral questions during the interview, such as 'Tell me about a time when you had to collaborate with a team to resolve a complex security issue.'
  • When negotiating salary, consider the company's budget and industry standards, and be prepared to provide evidence of your skills and experience.
  • Red flag: Be cautious if the company is unwilling to provide information about their security protocols or compliance regulations.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.