CrawlJobs Logo

Senior Cloud Security Engineer

tripadvisor.com Logo

Tripadvisor

Location Icon

Location:
Portugal; Poland

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Viator, a Tripadvisor company, is the leading marketplace for travel experiences. We are looking for a hands-on Senior Cloud Security Engineer to be the first line of defense for the Viator platform. This is a critical role that blends proactive security engineering with reactive incident response. You will live and breathe in our product's cloud environment, monitoring for threats, responding to security incidents, automating defenses, and working closely with our engineering teams to build a more resilient platform.

Job Responsibility:

  • Monitor, analyze, and investigate security alerts originating from our AWS infrastructure, application logs, and security tooling (WAF, SIEM, Cloud-Native tools)
  • Lead the response to security incidents that directly impact the Viator application
  • Manage and triage vulnerabilities reported through our bug bounty program and other external sources
  • Build and maintain security monitoring and alerting capabilities within our production environment
  • Automate security operations tasks using scripting languages like Python or Go
  • Configure, tune, and manage security tools like our Web Application Firewall (WAF), AWS GuardDuty, and Security Hub
  • Operationalize findings from application security tools (SAST, DAST, SCA) by working with engineering teams to prioritize and remediate vulnerabilities
  • Conduct threat modeling for new features to identify and mitigate risks before they reach production
  • Act as a security subject matter expert for our product and engineering teams, providing guidance on secure coding practices and architecture

Requirements:

  • Deep, hands-on experience securing a production environment in AWS
  • Comfortable with AWS core security services (e.g., GuardDuty, Security Hub, WAF, CloudTrail)
  • Comprehensive understanding of core AWS services beyond just security tools (e.g., VPC networking, EC2, RDS, S3, Lambda, EKS)
  • Strong proficiency with Terraform for managing and securing cloud infrastructure
  • Proven experience managing the full lifecycle of security incidents
  • Proficiency in at least one scripting language (e.g., Python, Go, Bash) to automate security operations and analysis tasks
  • A solid understanding of common web application vulnerabilities (OWASP Top 10) and how to defend against them

Additional Information:

Job Posted:
January 07, 2026

Work Type:
Remote work
Icon
Tripadvisor - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Cloud Security Engineer

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We are seeking a Senior Vulnerability Management Engineer to lead and enhance ou...
Location
Location
Philippines , Makati City
Salary
Salary:
Not provided
avaloq.com Logo
Avaloq
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive hands-on experience with Tenable (Tenable.io, Tenable.sc, Nessus Manager)
  • Deep technical expertise in vulnerability detection, authenticated scan engineering, and hybrid infrastructure scanning
  • Strong knowledge of networks, Windows/Linux, VMware, cloud platforms (AWS and OCI), and container ecosystems
  • Scripting and automation skills (Python, PowerShell, REST APIs)
  • Solid understanding of security frameworks: CIS Benchmarks, ISO 27001, SWIFT CSCF, CSA CCM
  • Experience in FINMA, MAS and DORA regulated financial environments (banks, insurers, securities firms)
  • Ability to communicate technical risk clearly to both engineers and senior management
  • Certifications: OCI Security Professional, Tenable Certified Engineer, CISSP
Job Responsibility
Job Responsibility
  • Lead engineering, architecture, and advanced configuration of Tenable.io / Tenable.sc / Nessus across hybrid infrastructures
  • Oversee authenticated scanning across servers, cloud workloads, network appliances, databases, and container platforms
  • Integrate Tenable with enterprise systems (CMDB, SIEM, ITSM) using APIs and scripting (Python/PowerShell)
  • Engineer cloud vulnerability coverage via connectors, agents, and container registry scans
  • Enhance detection accuracy through custom plugins, scan policy tuning, and automation pipelines
  • Provide technical leadership and guidance to remediation teams, ensuring adherence to CIS/NIST/SWIFT/ISO standards
  • Produce regulator-ready metrics, dashboards, and audit evidence for FINMA and MAS reviews
  • Contribute to security architecture, hardening initiatives, and continuous improvement of the vulnerability management program
What we offer
What we offer
  • Annual bonus
  • Flexible working
  • Instant recognition
  • Access to Udemy for professional and personal learning
  • Fulltime
Read More
Arrow Right

Senior Application Security Engineer

As an Application Security - Senior Product Security Engineer, you will play a c...
Location
Location
United States
Salary
Salary:
157000.00 - 216000.00 USD / Year
alpha-sense.com Logo
AlphaSense
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Application or Product Security, preferably in a SaaS or cloud-native environment
  • Strong understanding of web app and API security, microservices, and containerized architectures
  • Experience integrating security tooling into modern CI/CD workflows
  • Proficiency with SAST, DAST, IaC scanning, and container security platforms
  • Skilled in secure coding and code review for at least one major language (Python, Java, Go, JavaScript)
  • Familiarity with AWS security, Kubernetes security, and DevSecOps best practices
Job Responsibility
Job Responsibility
  • Lead application security initiatives across all SaaS products and microservices
  • Conduct threat modeling, architecture reviews, and secure code assessments for both backend and frontend systems
  • Implement and manage security automation in CI/CD, integrating SAST, DAST, SCA, and container image scanning tools
  • Collaborate with engineering teams to triage, prioritize, and remediate vulnerabilities across applications and containerized workloads
  • Drive AppSec awareness and training, developing secure coding practices and guidelines
  • Evaluate and deploy container security controls, ensuring images and orchestrators (Kubernetes, ECS, etc.) follow best practices
  • Support bug bounty and vulnerability disclosure programs and coordinate penetration testing
  • Stay ahead of emerging application and container threats, and recommend preventive controls aligned with OWASP and CIS benchmarks
What we offer
What we offer
  • Competitive compensation, benefits, and career growth opportunities
  • Opportunity to shape and drive product security strategy
  • Collaborative and security-minded engineering culture
  • Work on cutting-edge security challenges in a fast-growing company
  • Performance-based bonus
  • Equity
  • Generous benefits program
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...
Location
Location
United States , Boston
Salary
Salary:
150000.00 - 190000.00 USD / Year
whoop.com Logo
Whoop
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
  • 8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
  • Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
  • Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
  • Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
  • Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
  • Demonstrated leadership in security incident response, investigations, and root cause analysis
  • Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
  • Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
  • Experience mentoring engineers and setting operational standards
Job Responsibility
Job Responsibility
  • Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
  • Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
  • Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
  • Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
  • Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
  • Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
  • Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
  • Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
  • Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
  • Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes
What we offer
What we offer
  • competitive base salaries
  • meaningful equity
  • generous equity package
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

We are looking for a Senior Cloud Security Engineer to join our Security Enginee...
Location
Location
United States
Salary
Salary:
196000.00 - 294000.00 USD / Year
vercel.com Logo
Vercel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in infrastructure or platform security roles
  • Deep understanding of secure cloud infrastructure (AWS/GCP), identity and access management, and system hardening
  • Proficient with tools like Terraform, CDK, Kubernetes, and CI/CD security
  • Skilled at balancing engineering realities with principled security practices
  • Proven track record of shipping secure, resilient systems at scale
Job Responsibility
Job Responsibility
  • Design and implement scalable security controls across our cloud-native platform
  • Harden infrastructure components using infrastructure-as-code, policy enforcement, and service isolation
  • Build secure by default infrastructure and code CI/CD pipelines
  • Collaborate with platform and infrastructure teams to integrate security best practices into architecture and workflows
  • Stay ahead of cloud security trends and adopt cutting-edge technologies to enhance platform resilience
  • Conduct threat modeling, risk analysis, and mitigation planning for critical systems
  • Drive improvements in monitoring, detection, and incident response at the platform level
  • Build, deploy and maintain relevant tooling
What we offer
What we offer
  • Competitive compensation package, including equity
  • Inclusive Healthcare Package
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
  • Flexible Time Off
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed
  • Fulltime
Read More
Arrow Right

Senior Cloud Infrastructure Security Engineer

Truveta is the world’s first health provider led data platform with a vision of ...
Location
Location
United States , Seattle; Bellevue
Salary
Salary:
135000.00 - 180000.00 USD / Year
truveta.com Logo
Truveta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum bachelor’s in Computer Science, Software Engineering, Electrical or Electronics Engineering, Information Systems, or equivalent
  • 5+ years’ experience in public cloud networking & security design, implementation & support
  • Experience of TCP/IP IPv4/v6, office network (Routing/Switching/WAN, Wi-Fi & Security) management
  • 3+ years automation experience in Azure Cloud Networking / Azure DevOps or GitHub CI/CD pipelines in any of the following: Python, PowerShell, Terraform, Bicep, YAML template
  • 3+ years network security practices in on-premises and/or cloud environment
  • Experience managing and supporting Windows Desktop OS, MacOS, managed endpoint administration at scale across an enterprise sized environment
  • Understanding of the Windows Desktop/Mac OS packaging, scripting, and automated deployment tools, such as Microsoft Intune and Jamf.
  • Ability to participate in on-call rotation
Job Responsibility
Job Responsibility
  • Design and implement Azure cloud-based infrastructure, including using tools for infrastructure as code(IaC) and automation to meet technical, security and business needs.
  • Design and implement Azure cloud environments (tenant, subscription, VM, storage account, databases, networking, firewalling) optimized for AI/ML workloads.
  • Manage and maintain Azure Networking, Azure firewalls/VPN and associated policies/rules, Web Application Firewall, Application Gateway, Front Door, VNET peering, ensuring security, availability, scalability, and performance.
  • Secure Azure Kubernetes clusters, containers, and images.
  • Establish and enforce Azure security policies, manage access controls, and ensure the infrastructure complies with relevant regulations.
  • Automate tenant and infrastructure provisioning, deployments, and other routine tasks to increase efficiency.
  • Monitor Azure cloud resources, analyze performance, and troubleshoot issues as they arise.
  • Perform incident troubleshoot and problem resolution for office network, cloud infrastructure, and own postmortems.
  • Work with Engineering teams and external teams, gather requirements, develop and integrate cloud solutions and support business needs.
  • Actively participate in architecture, code reviews, presentations, share learns and best practices to enable flawless deployment and quality operations.
What we offer
What we offer
  • Interesting and meaningful work for every career stage
  • Great benefits package
  • Comprehensive benefits with strong medical, dental and vision insurance plans
  • 401K plan
  • Professional development & training opportunities for continuous learning
  • Work/life autonomy via flexible work hours and flexible paid time off
  • Generous parental leave
  • Regular team activities (virtual and in-person)
  • Additional compensation such as incentive pay and stock options (for certain roles)
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

Join us in building the future of finance. Our mission is to democratize finance...
Location
Location
United States , Bellevue
Salary
Salary:
187000.00 - 220000.00 USD / Year
robinhood.com Logo
Robinhood
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Securing enterprise applications on AWS by building software, services, and automation
  • Proficiency with Golang (preferred) or Python and Infrastructure-as-Code (IaC) using Terraform
  • Strong command of industry best practices like the AWS Well-Architected framework and CIS Benchmarks
  • Expert level knowledge of AWS security services like Identity & Access Management (IAM), Service Control Policies (SCPs), AWS WAF, and AWS Network Firewall
Job Responsibility
Job Responsibility
  • Own the security posture for cloud infrastructure on which all Robinhood products are built
  • Build and operate solutions that protect foundational infrastructure and make it easier for Robinhood developers to protect their applications
  • Protect Robinhood’s AWS cloud environment and provide engineers with foundational security capabilities
  • Build, configure and set up systems with a safety first approach
What we offer
What we offer
  • Performance driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching
  • 100% paid health insurance for employees with 90% coverage for dependents
  • Lifestyle wallet - a highly flexible benefits spending account for wellness, learning, and more
  • Employer-paid life & disability insurance, fertility benefits, and mental health benefits
  • Time off to recharge including company holidays, paid time off, sick time, parental leave, and more
  • Exceptional office experience with catered meals, events, and comfortable workspaces
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy