CrawlJobs Logo

Cloud Security Lead

United States, Foster City 220000.00 - 325000.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

Join us at the forefront of AI and cloud-native security as we work to secure one of the most innovative developer platforms in the world. As the Cloud Security Lead, you will shape the cloud and infrastructure security program that protects millions of developers, enables safe AI-assisted development, and ensures organizations can confidently bring our platform into enterprise environments. In this role, you will own cloud security across GCP (primary) and supplemental environments in AWS and Azure, as well as containerized systems, SaaS platforms, and our multi-tenant AI infrastructure. You’ll improve our security posture through strong architecture, posture management, secure-by-default development practices, and close partnership with Engineering, Compliance, Security Architecture, and Platform teams. This is a highly impactful, hands-on leadership role—perfect for someone who wants to solve complex security challenges at scale while influencing product, engineering, and go-to-market teams.

Job Responsibility

  • Lead configuration hardening across GCP, with additional oversight of workloads and integrations running in AWS and Azure
  • Own and optimize CSPM platforms across multi-cloud environments—establishing configuration baselines, guardrails, and remediation workflows
  • Secure critical SaaS platforms, ensuring proper configurations, access controls, and engineering integrations
  • Lead infrastructure vulnerability management across multi-cloud systems, containers, registries, and platform services
  • Enhance security across containerized and Kubernetes (GKE/EKS/AKS) workloads, including runtime protections, network policies, and workload identity
  • Assess secure logging configurations across cloud/SaaS providers, ensuring audit logs, retention, and routing meet monitoring and architecture needs
  • Partner with engineering teams to make services secure by default, embedding security into development workflows, CI/CD pipelines, and cloud-native deployments
  • Collaborate with Security Monitoring, Compliance/GRC, Architecture, DevOps, Platform Engineering, and ML Infrastructure
  • Participate in communicating security advisories, best practices, and updates to Replit’s customers
  • Support incident investigations as a cloud security subject-matter expert

Requirements

  • 7+ years of experience in cloud engineering, with 3+ years in a senior or lead role
  • Hands-on experience with CSPM tools (Wiz, Lacework, Prisma, Orca, SCC, etc.)
  • Deep expertise in GCP security (IAM, VPC, KMS, GKE, Cloud Logging)
  • Experience securing and governing SaaS platforms and identity integrations
  • Operational experience with infrastructure vulnerability management across cloud and container environments
  • Working knowledge of AWS and/or Azure security services and configurations
  • Experience with container and Kubernetes security across GKE, EKS, or AKS
  • Strong IaC security experience with Terraform, Pulumi, or similar tooling
  • Familiarity with compliance standards (SOC 2, ISO 27001, PCI DSS)

Nice to have

  • Experience supporting engineering teams in building secure-first, cloud-native or PaaS environments
  • Background securing AI/ML pipelines, model-serving infrastructure, or developer platform services
  • Experience in high-growth technology or cloud-native product companies
  • Experience with securing AI/agentic systems and sensitive data pipelines
  • Automation/scripting with Python
  • Relevant certifications (e.g., GCP Professional Cloud Security Engineer, AWS/Azure security certs)

What we offer

  • Competitive Salary & Equity
  • 401(k) Program with a 4% match
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Commuter Benefits
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement
  • Flexible Time Off (FTO) + Holidays
  • Quarterly Team Gatherings
  • In Office Amenities

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Cloud Security Lead

8 matching positions

New

Lead Cloud Security Architect

Location
Location
Sweden; United Kingdom; Poland , Stockholm; London; Łódź; Warsaw; Gdansk; Cracow
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in technology, with at least 7 years in a dedicated cloud security or infrastructure security role
  • Demonstrated experience designing and implementing secure landing zones in a multi-cloud environment (GCP, AWS)
  • Hands-on experience with the architecture and strategy of cloud security tools (e.g.,Wiz, Orca)
  • A Bachelor’s degree in a relevant field or equivalent professional experience.
Job Responsibility
Job Responsibility
  • Champion and orchestrate the definition of Arrive’s cloud security architecture, from identity boundaries to network segmentation, in partnership with Data & Analytics teams, Engineering, and IT
  • Develop and maintain a comprehensive set of global security standards, baselines, and guidelines for cloud-native services, container security, and serverless computing
  • Create and champion the strategy for cloud security tooling including CSPM (Cloud Security Posture Management) and CWPP (Cloud Workload Protection) - ensuring these platforms are architected for seamless SecOps integration, automated alerting, and streamlined incident response workflows
  • Define and manage cloud security standards for Mergers & Acquisitions, establishing requirements for the secure migration and integration of acquired cloud environments
  • Own and evolve the cloud security reference architecture, providing a clear 'north star' for all engineering teams to follow
  • Operating 'Together,' you will act as strategic partner for the Infrastructure, SecOps, and engineering teams, orchestrating a cohesive security vision that spans the entire cloud and AI-first engineering landscape
  • Act as a lead security consultant and strategic partner for infrastructure, SecOps, and Engineering teams - providing expert guidance on secure cloud design patterns and landing zone configurations
  • Forge a dynamic partnership with the Security Platform team: co-design the infrastructure-as-code (IaC) security roadmap and introduce new architectural patterns where needed
  • Lead security architecture reviews and threat modeling sessions for complex cloud migrations and high-risk infrastructure changes
  • Act as a senior mentor and advocate for cloud security champions across the organization, helping to grow our internal technical talent
  • Fulltime
Read More
Arrow Right

Solutions GTM Lead – Cloud Security

Arrow ECS is seeking a Solutions Go-To-Market (GTM) Lead – Cloud Security to dri...
Location
Location
United Kingdom , Remote
Salary
Salary:
Not provided
arrow.com Logo
Arrow Electronics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Business, Marketing, Technology, or a related field
  • 4–6 years of experience in GTM, solution marketing, sales programs, or partner roles within the technology sector
  • Strong understanding of cloud security solutions (e.g., cloud security posture management, identity, data protection, workload security)
  • Practical experience with sales play methodology and field execution
  • Proven ability to work cross-functionally with sales, marketing, and operations
  • Strong communication, organizational, and stakeholder management skills
  • Comfortable working across multiple EMEA markets in a matrixed environment
Job Responsibility
Job Responsibility
  • Execute cloud security sales plays aligned to Arrow ECS GTM priorities and vendor strategies
  • Translate cloud security solutions into clear, actionable GTM motions for sales teams and partners
  • Support execution across the UK and broader EMEA, ensuring consistency while adapting to local market needs
  • Partner with core sales teams to support field execution, pipeline acceleration, and seller enablement
  • Work closely with marketing to align messaging, campaigns, and enablement assets to security plays
  • Collaborate with operations to ensure plays are operationally ready—supported by the right tools, processes, and reporting
  • Support consistent execution of cloud security plays across EMEA regions
  • Act as a connector between regional teams and broader EMEA or global GTM frameworks
  • Share field feedback and performance insights to continuously improve play effectiveness
  • Track execution and performance of cloud security GTM initiatives
  • Fulltime
Read More
Arrow Right

Python Lead (cloud security projects)

Our client is a renowned company with over 30 years of experience in the IT indu...
Location
Location
Poland , Kraków
Salary
Salary:
30000.00 - 36000.00 PLN / Month
teamquest.pl Logo
TeamQuest Sp. z o. o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in the software industry
  • 5+ years of hands-on backend development experience (Python preferred
  • Go, Java, or C# also valued)
  • 3+ years leading development teams in dynamic, fast-paced environments (Enterprise SaaS preferred)
  • Computer Science degree or similar experience
  • Deep experience building on AWS in serverless (Lambda, API GW, RDS, IAM, etc.) with strong CI/CD practices
  • Exceptional leadership, communication, and mentoring skills
  • Proven ability to deliver complex, high-quality software at scale
  • Highly self-motivated with a strong sense of ownership and accountability
  • Very good English skills
Job Responsibility
Job Responsibility
  • Lead a team of talented engineers building secure, resilient, and high-performing SaaS services on AWS, with deep integrations into Azure, GCP
  • Define the architectural direction
  • Shape product capabilities
  • Set engineering standards that will influence the entire platform
  • Lead, mentor, and grow a multidisciplinary R&D team delivering innovative, production-grade cloud services
  • Drive architectural and technological decisions ensuring security, scalability, and operational excellence
  • Partner with product, architecture, and other R&D teams to turn strategic goals into world-class technical solutions
  • Cultivate a culture of innovation, ownership, and technical mastery
  • Own the full development lifecycle - from design and implementation to deployment and monitoring in production
What we offer
What we offer
  • Pakiet medyczny
  • Pakiet sportowy
  • Budżet szkoleniowy
  • Attractive salary
  • Full remote work
  • Long, multi-year cooperation
  • Fulltime
Read More
Arrow Right

Cloud Security Technical Lead

The Cloud Security Analyst is responsible for driving IM-wide improvements, whil...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Engineering Graduate - preferably B.E. /B.Tech in IT or Computer Engineering
  • Strong knowledge of AWS / GCP
  • Good Knowledge of PrismaCloud
  • Experience with cloud development and automation pipelines
  • Strong analytical & problem solving ability
  • Passion for emerging technology and excited at the prospect of building upon your existing technical knowledge and learning new skills
  • Excellent communication and negotiation skills
  • Agile/Scrum and SaFe cultures and experience
  • Total Experience Expected: 06-08 years
Job Responsibility
Job Responsibility
  • Accountable for driving IM-wide improvements, while ensuring that its overall strategy remains aligned with corporate security policies and IM security priorities
  • Build RQL policies in PrismaCloud for AWS, GCP and possibly Azure
  • Contribute to the deployment and integration of new PrismaCloud modules within the Airbus Cloud ecosystem (through automation, IaC and development pipelines)
  • Analyse PrismaCloud findings to identify policies that are triggering false positives, blind spots, etc.
  • Guide to improve the overall cloud security scoring over time
  • Contribute to the definition and implementation of Key Performance Indicators (KPI) to follow up on Airbus security posture
  • Collaborate on the definition of product and service vision within the team
Read More
Arrow Right

Google Cloud Security Module Lead

The Cloud Security Compliance Analyst is responsible for: Assessing the conformi...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Engineering Graduate - preferably B.E. /B.Tech in IT or Computer Engineering
  • Strong knowledge of AWS Services and Cloud Security
  • Remediation support for Cloud Infra Vulnerabilities
  • Remediation support for Security Non-Compliance alerts
  • Analysis of false/true positive alerts
  • Analysing built-in and customised RQLs
  • Cloud compliance exception analyst
  • Cloud SecOps skills like vulnerability detection and remediation follow-up are a plus
  • Good Communication & Stakeholder Management skills
  • Total Experience Expected: 04-06 years
Job Responsibility
Job Responsibility
  • Assess the compliance of the different Cloud Services using Airbus Standards and Public Cloud Security Standards
  • Define the required security controls to make the usage of the cloud services compliant
  • Ensure a good quality of the description of the security control taking into account the company context
  • Evaluate the relevant severity for each security control
  • Ensure the lifecycle of the defined security controls
  • Synchronize and work with Cloud Security and Cloud platform stakeholders to ensure the visibility and relevance of the deliveries
  • Make propositions to improve the compliance assessment process
  • Contribution to Cloud Platform blueprints by providing services compliant IaC
  • Assess the compliance of the different Cloud Services using Organisation/customers Standards and Public Cloud Security Standards
  • Synchronise and work with Cloud Security and Cloud platform stakeholders to ensure the visibility and relevance of the deliveries
  • Fulltime
Read More
Arrow Right

Cloud & Security Services Product Owner Lead

Managing the entire Cloud & Hosting products life cycle from technical design an...
Location
Location
Egypt , Giza
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years’ experience in IT Administration
  • Excellent cross-functional project management skills
  • Take deep interest in new technologies and emerging global service delivery trends
  • Good commercial background
  • Strong stakeholder & time management skills
  • Attention to details with a keen eye on the final target
  • Practise Cloud Technologies, especially IaaS & PaaS solutions
  • Technical knowledge of cloud technologies VMware, EMC, AWS, Microsoft Azure and security solutions
  • Excellent knowledge of product Development life cycle
  • Excellent quantitative data analysis and critical thinking skills
Job Responsibility
Job Responsibility
  • Managing the entire Cloud & Hosting products life cycle from technical design and tactical activities with different suppliers, Cloud & Security agencies, and internal technology teams
  • Managing the complete end to end high- and low-level cloud solutions design and implementation with EBU customers
  • Managing Agile IaaS Squads and maintain delivery SLA
  • Work with Technology Vendors (Microsoft Azure, AWS, Dell EMC, Cisco, VMware, etc..) to build and expand business values and market penetration
  • Fulltime
Read More
Arrow Right

Security Engineer (Cloud Security)

We are looking for a Senior Security Engineer with a focus on cloud security to ...
Location
Location
Qatar , Doha
Salary
Salary:
Not provided
qic.digital Logo
QIC digital hub
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience securing Google Cloud Platform (GCP) environments (IAM, least privilege, service accounts, Workload Identity, VPC security, firewalls, egress control, Org Policies, Security Command Center, audit logging, misconfiguration detection)
  • Solid experience securing Kubernetes (GKE) (cluster hardening, API access, RBAC, network policies, workload isolation, pod security, secrets management, container/image security, runtime monitoring e.g. Falco, policy enforcement with OPA/Kyverno)
  • Experience with WAF solutions (preferrably F5.) and rule tuning
  • Practical experience with ZTNA (e.g. Cloudflare Access, Zscaler) and understanding of OAuth2, OIDC, JWT
  • Strong hands-on experience with Infrastructure as Code (Terraform)
  • Good understanding of web and API security (OWASP Top 10)
  • Experience with logging, monitoring, and incident response in cloud environments
  • Ability to identify and mitigate real-world security risks and attack vectors
  • Strong problem-solving skills and ability to work independently in a fast-paced environment
  • Focus on practical, scalable security solutions rather than theoretical or compliance-only approaches
Job Responsibility
Job Responsibility
  • Design and implement secure architecture in GCP
  • Secure and harden Kubernetes clusters (GKE) across network, workloads, and access layers
  • Build and operate Zero Trust access model based on Zero Trust Architecture
  • Configure, tune, and maintain WAF solutions (e.g. Cloudflare, Google Cloud Armor, F5)
  • Identify and remediate cloud and Kubernetes misconfigurations
  • Implement security logging, monitoring, and detection use cases for cloud-native environments
  • Lead or support incident response (triage, containment, root cause analysis, post-incident improvements)
  • Partner with DevOps and Engineering teams to integrate security into infrastructure
  • Define and enforce security baselines, hardening standards, and guardrails across cloud environments
What we offer
What we offer
  • Generous vacation time, paid sick leave, and bonus days for years of service
  • Language classes
  • Workshops on investing, mental wellbeing, and intercultural communication
  • $600/year for additional courses, plus internal workshops
  • QIC running club
  • Relocation support
  • Remote health insurance with up to $1,500 in dental coverage
  • Tax consultations
  • Travel discounts with Qatar Airways, Turkish Airlines, and Doha hotel partners
  • USD, EUR, or AED salary payouts
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer – Cloud Foundation

Yotpo is leading the next era of trust and loyalty in eCommerce. With AI-powered...
Location
Location
Bulgaria , Sofia
Salary
Salary:
Not provided
yotpo.com Logo
Yotpo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience as Cloud Security Engineer, DevSecOps, or similar roles within an AWS environment
  • Expertise in managing cloud security controls (IAM, Security Groups/ACLs, WAF, IDS/IPS, load balancing, proxies, VMs, serverless)
  • Experience securing Kubernetes and containerized workloads
  • Proficiency with Python/Bash scripting and automation
  • Experience with Infrastructure-as-Code (IaC), preferably Terraform, and CI/CD tooling (e.g., GitHub Actions)
  • Strong communication skills to influence and guide teams as a cloud security SME
  • Excellent problem-solving skills for high-complexity environments
  • Excellent written and verbal English
Job Responsibility
Job Responsibility
  • Serve as Cloud Security Subject Matter Expert (SME), actively supporting R&D and product teams in developing secure solutions
  • Design secure cloud architectures and implement practical, automated, and scalable controls across services in partnership with DevOps, R&D, and Product teams
  • Continuously assess cloud security posture, identifying gaps and opportunities to reduce risk and adopt best practices
  • Implement, mature, and automate end-to-end cloud security controls across AWS, Kubernetes, CI/CD pipelines, and self-managed systems
  • Lead and improve vulnerability management workflows
  • communicate vulnerabilities and mitigation strategies to stakeholders, balancing business agility and security
  • Own the full lifecycle of security initiatives from proof of concept (POC) and design to deployment and operation while promoting a security-first mindset
  • Maintain and develop the team knowledge base
  • Stay curious and enjoy working with modern security tools and technologies
What we offer
What we offer
  • Track to success – work in a dynamic organization with ambient and laid-back office atmosphere
  • Individualized career development, rewards, and recognition
  • Work-life balance – 25 days paid vacation with add-ons for loyalty, regular team buildings and celebrations in and outside the country
  • Additional health insurance package
  • Internal mobility program and refer-a-friend program
  • Managing a fixed monthly budget for social benefits thru Re:Benefit – a flexible online benefits solution
  • Food vouchers
  • E-learning portals and knowledge sharing sessions
  • Company backed Hackathons, Tech conferences, workshops events, etc
  • Stocked kitchen and bar
  • Fulltime
Read More
Arrow Right