Ajaib
Tech / AI / Software
CloudSecurityEngineer
Neural analysis suggests this role is
optimal for Mid candidates.
“Cloud Security Engineer at Ajaib. Skills: Cloud Security, Incident Response, Automation, Infrastructure Integrity. Lead 24x7 monitoring and triage of security alerts across SIEM (Wazuh), EDR (CrowdStrike), DLP and cloud environments. Lead detection, triage, containment, and post-incident reviews for infrastructure and cloud-layer security events”
Industry & Context.
threat hunting; identify advanced threats; prevent misconfigurations; reduce Mean Time to Respond (MTTR); ensure instant containment of threats
24x7 monitoring
What They're Looking For.
Must Have
3+ years in a SOC or Security Operations environment, Proficiency in Wazuh (log ingestion, correlation, and dashboards) or any other SIEM tool and Google SCC, Hands-on experience managing CrowdStrike Falcon and Cloudflare WAF, Practical experience with GCP or AWS security monitoring and IAM, Mastery of the full incident lifecycle (Triage, Containment, Eradication, Lessons Learned), Proficiency in Python or Bash for automating response playbooks and custom security checks, Basic knowledge of GCP or AWS for monitoring infrastructure drift, Familiarity with MITRE ATT&CK, Basic understanding of blockchain fundamentals, wallet security, and DeFi-specific threats (e. g. , flash loans, exchange exploits), Experience integrating JumpCloud with infrastructure tools to enforce the "Kill Switch" during offboarding
Nice to Have
preferably within Fintech or Digital Banking
What You'll Do.
Lead 24x7 monitoring and triage of security alerts across SIEM (Wazuh)
DLP and cloud environments
and post-incident reviews for infrastructure and cloud-layer security events
Drive the reduction of Mean Time to Detect (MTTD) through improved correlation and automated alerting
Perform proactive threat hunting using MITRE ATT&CK techniques to identify advanced threats before they impact production
Implement and monitor IaC guardrails with automated drift detection to prevent misconfigurations in GCP/AWS
Partner with engineering to deploy immutable infrastructure through standardized "Golden Images" to eliminate manual server hardening
Build and manage automated SOAR (Security Orchestration
and Response) playbooks to reduce Mean Time to Respond (MTTR) and ensure instant containment of threats
Implement automated inventory discovery to ensure "if it isn't tagged
it doesn't run" within cloud environments
Manage and optimize Cloudflare WAF rules to protect application layers against DDoS and web attacks
Manage secure infrastructure access through Teleport
moving away from legacy SSH/VPN access toward a Zero-Trust identity anchor
Monitor for threats targeting hot/cold storage systems and exchange infrastructure
Enforce the "Identity Anchor" by ensuring all infrastructure access is anchored to the corporate IDP (Google Workspace/JumpCloud)
How You'll Work.
Team & Collaboration
Partner with engineering to deploy immutable infrastructure through standardized "Golden Images"
Full Job Description
To serve as "The Watchtower" for Ajaib’s global infrastructure. You will be responsible for ensuring infrastructure integrity across GCP, AWS, and On-Prem environments while owning the end-to-end detection and response lifecycle. Your mission is to transition from manual "eyes on glass" monitoring to a high-velocity, automated operating model that protects customer trust and company IP at scale. **Responsibilities** 1\. Detection & Incident Response (The Watchtower) * Monitoring & Triage: Lead 24x7 monitoring and triage of security alerts across SIEM (Wazuh), EDR (CrowdStrike),DLP and cloud environments. * Incident Lifecycle: Lead detection, triage, containment, and post-incident reviews for infrastructure and cloud-layer security events. * Core Metric Ownership: Drive the reduction of Mean Time to Detect (MTTD) through improved correlation and automated alerting. * Threat Hunting: Perform proactive threat hunting using MITRE ATT&CK techniques to identify advanced threats before they impact production. 2\. Infrastructure Integrity & Automation (The Paved Road) * Infrastructure-as-Code (IaC) Guardrails: Implement and monitor IaC guardrails with automated drift detection to prevent misconfigurations in GCP/AWS. * Standardized Golden Images: Partner with engineering to deploy immutable infrastructure through standardized "Golden Images" to eliminate manual server hardening. * SOAR & Response Playbooks: Build and manage automated SOAR (Security Orchestration, Automation, and Response) playbooks to reduce Mean Time to Respond (MTTR) and ensure instant containment of threats. * Inventory Discovery: Implement automated inventory discovery to ensure "if it isn't tagged, it doesn't run" within cloud environments. * DLP Governance. 3\. Platform & Tooling Management * EDR Administration: Fine-tune and manage CrowdStrike Falcon (Managed Service) and oversee the decommissioning of legacy EDR solutions (Symantec). * WAF Optimization: Manage and optimize Cloudflare WAF rules to pr
Applying for this Cloud Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Ajaib?
Real rants from real employees. Read before you apply.