PlatformEngineerII(CloudSecurity)

At WHOOP, we're on a mission to unlock human performance and healthspan. WHOOP empowers members to perform at a higher level and live longer through a deeper understanding of their bodies and daily lives. Protecting our members’ data and ensuring our systems scale securely and reliably is core to this mission. As a Platform Engineer II on the Cloud Security team, you will play a key role in building and operating the infrastructure, tooling, and guardrails that protect WHOOP’s cloud environments. You will work at the intersection of security, infrastructure, and developer experience, helping ensure that secure-by-default practices are embedded into how systems are designed, deployed, and operated. The Cloud Security team focuses on reducing risk across WHOOP’s cloud footprint by enforcing least-privilege access, strengthening IAM and secrets management, and detecting and preventing unauthorized access or lateral movement. This role is ideal for an engineer who enjoys automating security, improving developer workflows, and building scalable systems that make the secure path the easiest path. RESPONSIBILITIES: - - Design, implement, and manage scalable, secure cloud infrastructure in AWS using Infrastructure as Code (IaC) tools such as Terraform - Build and manage IAM systems, access controls, and least-privilege policies to reduce risk and limit blast radius - Implement automation and tooling to detect misconfigurations, privilege escalation risks, and anomalous behavior - Build and maintain secure, reliable, and auditable AWS and Kubernetes environments across multiple accounts and services - Improve secrets management, key rotation, and secure service-to-service authentication patterns - Collaborate with platform, product, and data science teams to deliver resilient infrastructure that enables rapid product development and member trust. - Contribute to the automation of cloud operations, from CI/CD pipelines to monitoring and alerting systems. - Develop and enforce