Security Engineer, Cloud Security
Red Cell PartnersSalary not specified
Full Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Technology, CybersecurityIndustries
Requirements
- Bachelor’s degree or equivalent practical experience
- 3+ years in security engineering or networking or a blended role across IAM, detections/monitoring, incident response, vulnerability/configuration management, and GRC
- Strong understanding of identity models, least privilege, and access review processes across cloud and SaaS environments
- Experience writing clear runbooks/playbooks and partnering with IT/Infrastructure to operationalize changes
- Familiarity with cloud security fundamentals, CI/CD concepts, and infrastructure-as-code principles
- Ability to translate risk into prioritized, incremental improvements with measurable outcomes
- Preferred Qualifications
- Demonstrated reduction of alert noise and duplicate findings through rule tuning, routing, and suppression
- Proven implementation of just-in-time administrative access, break-glass pathways, and periodic access reviews
- Experience orchestrating incident response and delivering durable, engineering-owned remediations
- Hands-on alignment of operations with SOC 2/ISO 27001 and automation of evidence collection
Responsibilities
- GRC Enablement: Map operating controls to automated evidence (access reviews, backup verification, change control, patch SLOs). Support third-party assessments, penetration-test scoping, and regression validation; contribute to SOC 2/ISO 27001 readiness
- Identity & Access Management: Design and maintain least-privilege models, just-in-time/step-up patterns, break-glass controls, and periodic access reviews. Publish clear access standards and reporting that improve visibility for engineering leadership and auditors
- Detections & Monitoring: Define, implement, and tune a ruleset for high-value scenarios (e.g., authentication anomalies, risky configuration changes, suspected key/role misuse, public exposure). Reduce false positives with context and suppression; maintain coverage and efficacy dashboards
- Incident Response: Author and own playbooks for top scenarios (credential theft, exposed secrets, suspicious data access, privilege escalation). Run tabletops with IT and Infrastructure; lead post-incident reviews and drive corrective actions with clear owners and timelines
- Vulnerability & Configuration Management: Improve signal quality, deduplication, ownership routing, and SLAs for findings across services and environments. Partner with Infrastructure on remediation plans, patching objectives, baseline configurations, account/landing-zone structure, and segmentation
- Documentation & Education: Maintain standards, runbooks, and quick-start guides that improve onboarding and day-to-day productivity. Lead reviews that balance near-term risk reduction with long-term architectural goals
Skills
Identity & Access Management
GRC
SOC 2
ISO 27001
Detections
Monitoring
Least-Privilege Models
Just-in-Time Access
Vulnerability Management
Configuration Management
Automation
Penetration Testing
Access Reviews
Change Control
Patch Management
Observe
Software platform for application data monitoring
About Observe
Observe Inc. offers the Observability Cloud, a platform that helps businesses manage and analyze the large amounts of data generated by complex applications. This tool is designed for software developers and engineering managers, providing a comprehensive way to monitor application performance by ingesting data from various sources and formats. Unlike traditional monitoring tools, the Observability Cloud offers a holistic view, addressing the challenges of continuous releases and frequent updates. The company operates on a subscription model, allowing users to try the platform for free, and emphasizes high-quality customer support as a key differentiator.
San Mateo, CaliforniaHeadquarters
2017Year Founded
$281.6MTotal Funding
SERIES_BCompany Stage
Data & Analytics, Enterprise SoftwareIndustries
201-500Employees
Benefits
Remote Work Options
Flexible Work Hours
Risks
AI integration may introduce technical challenges affecting platform stability.
Reliance on Snowflake poses risks if pricing or service terms change.
New data sharing capabilities could raise data privacy and security concerns.
Differentiation
Observe consolidates logs, metrics, and traces into a unified data lake.
Data Graph technology enables faster issue diagnosis in distributed applications.
Observability Cloud ingests data from any source, offering a holistic application view.
Upsides
Integration with Snowflake enhances data analytics and market reach.
AI-powered observability tools offer advanced insights, aligning with AI integration trends.
$145M Series B funding boosts product development and expansion efforts.
Related Jobs
RemoteRemoteSecurity Operations Lead
EarnestSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteIdentity and Access Management Engineer
HumanaSalary not specified
- Full Time
- Mid-level (3 to 4 years)
RemoteSecurity Engineer, Infrastructure Security
OpenAI$292,500 - $405,000/year
- Full Time
- Junior (1 to 2 years)
RemoteSecurity Response Engineer, Detection Engineering
Chainlink LabsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteRegulatory & Security Compliance Analyst
RainSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSecurity Engineer, Product Security
Chainlink LabsSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSenior Manager, Incident Reponse
Vultr$150,000 - $225,000/year
- Full Time
- Senior (5 to 8 years)