SeniorSecurityEngineerII–Cloud&DataSecurity

About the Role We are hiring a Senior, hands-on Cloud Security Engineer to secure a large-scale, cloud-native SaaS platform. This is an engineering-first role for someone who builds security solutions—not just manages tools. You will be a SME for cloud security architecture across platform, IAM, network, workload, data, and AI enablement, and partner with Engineering, Security, and Product to implement scalable controls that support business growth. You’ll design secure architectures, embed controls into infrastructure-as-code, and build automated guardrails so teams can move fast without waiting on manual security approvals. We’re looking for a builder-defender who thrives in complex cloud environments, automates aggressively (“let the robots do the work”), and can scale cloud security for a fast-moving SaaS company. What You’ll Do Architectural Leadership: Partner deeply with infrastructure and engineering teams to embed security into development workflows, leading high-level technical discussions to guide security efforts and strategic priorities. Multi-Cloud Engineering: Design, implement, and continuously improve Sigma Cloud Security across AWS, GCP, and Azure environments with architect-level technical depth. Threat Modeling including IAM, networking (VPCs, security groups, PrivateLink), and native security services is strongly desired. Strong infrastructure-as-code skills—you write Terraform professionally, not just read it. Advanced understanding and experience with container security, Kubernetes, and secure CI/CD pipeline design Proven ability to demonstrate incident response experience specifically related to cloud-based malicious activity and breach remediation. Advanced Cloud IAM expertise: federation, SSO, PAM/JIT access, service identities, and least privilege design. Strong background in cloud network security (segmentation, private connectivity, egress controls, WAF). Strong proficiency in scripting languages (e.g., Python, Go, PowerShell) for automa