[Remote] Principal Cloud Security Engineer (Remote - Work from Anywhere)
Note: The job is a remote job and is open to candidates in USA. Xapo Bank is a fully distributed team committed to economic freedom and wealth protection. They are seeking a seasoned Principal Cloud Security Engineer to secure their cloud-native infrastructure and services across AWS, GCP, and other environments, ensuring a security-first approach in their global digital banking and crypto platform.
Responsibilities
ā¢ Architect, implement, and maintain cloud security controls across AWS and GCP to protect our infrastructure, applications, and data
ā¢ Take full ownership of security projects, driving them from initial concept through development, testing, and deployment
ā¢ Review, write and deploy infrastructure-as-code (IaC) security solutions using Terraform
ā¢ Continuously assess cloud environments using Cloud Security Posture Management (CSPM) platforms like Wiz
ā¢ Support monitoring, detection, and response for cloud threats by integrating with tools such as AWS GuardDuty, Security Hub, and GCP Security Command Center
ā¢ Participate actively in incident response and forensic analysis for cloud-related security events
ā¢ Collaborate with cross-functional teams to perform threat modeling and secure architecture reviews for new services and infrastructure changes
ā¢ Help reinforce a security-first culture by sharing best practices and participating in awareness initiatives
Skills
ā¢ 5+ years of experience in cloud security engineering, DevSecOps, or related infrastructure security roles
ā¢ Demonstrable expertise in securing cloud environments (especially AWS and/or GCP)
ā¢ Strong hands-on experience with securing AWS and/or GCP environments (IAM, VPCs, workload protection, encryption, etc.)
ā¢ Proficiency in Terraform, with a focus on building and enforcing secure cloud infrastructure
ā¢ Solid experience with cloud-native security tools and CSPM solutions like Wiz, Prisma Cloud, or Orca Security
ā¢ Familiarity with security frameworks and standards (e.g., NIST, CIS, ISO) and their practical application in cloud environments
ā¢ Familiarity with container security concepts
ā¢ Solid grasp of DevSecOps principles, with proven experience integrating security into CI/CD pipelines and operational processes
ā¢ Excellent problem-solving abilities, with a proactive mindset and the capability to adapt to new challenges in dynamic environments
ā¢ A dedicated workspace
ā¢ A reliable internet connection with the fastest speed possible in your area
ā¢ Alignment with Our Values and the Xapo Values-Driven Leadership principles
ā¢ Relevant certifications are a plus, such as: AWS Certified Solutions Architect, AWS Certified Security ā Specialty, Google Professional Cloud Security Engineer, Other recognized cloud security certifications
Benefits
ā¢ Flexible PTO plan
ā¢ Yearly budget for your individual learning and development goals
Company Overview
ā¢ Xapo Bank is a financial company that provides accounting, bitcoin, global card, and banking services. It was founded in 2014, and is headquartered in Gibraltar, Gibraltar, GIB, with a workforce of 201-500 employees. Its website is https://www.xapobank.com/.
Apply tot his job
Apply To this Job
Responsibilities
ā¢ Architect, implement, and maintain cloud security controls across AWS and GCP to protect our infrastructure, applications, and data
ā¢ Take full ownership of security projects, driving them from initial concept through development, testing, and deployment
ā¢ Review, write and deploy infrastructure-as-code (IaC) security solutions using Terraform
ā¢ Continuously assess cloud environments using Cloud Security Posture Management (CSPM) platforms like Wiz
ā¢ Support monitoring, detection, and response for cloud threats by integrating with tools such as AWS GuardDuty, Security Hub, and GCP Security Command Center
ā¢ Participate actively in incident response and forensic analysis for cloud-related security events
ā¢ Collaborate with cross-functional teams to perform threat modeling and secure architecture reviews for new services and infrastructure changes
ā¢ Help reinforce a security-first culture by sharing best practices and participating in awareness initiatives
Skills
ā¢ 5+ years of experience in cloud security engineering, DevSecOps, or related infrastructure security roles
ā¢ Demonstrable expertise in securing cloud environments (especially AWS and/or GCP)
ā¢ Strong hands-on experience with securing AWS and/or GCP environments (IAM, VPCs, workload protection, encryption, etc.)
ā¢ Proficiency in Terraform, with a focus on building and enforcing secure cloud infrastructure
ā¢ Solid experience with cloud-native security tools and CSPM solutions like Wiz, Prisma Cloud, or Orca Security
ā¢ Familiarity with security frameworks and standards (e.g., NIST, CIS, ISO) and their practical application in cloud environments
ā¢ Familiarity with container security concepts
ā¢ Solid grasp of DevSecOps principles, with proven experience integrating security into CI/CD pipelines and operational processes
ā¢ Excellent problem-solving abilities, with a proactive mindset and the capability to adapt to new challenges in dynamic environments
ā¢ A dedicated workspace
ā¢ A reliable internet connection with the fastest speed possible in your area
ā¢ Alignment with Our Values and the Xapo Values-Driven Leadership principles
ā¢ Relevant certifications are a plus, such as: AWS Certified Solutions Architect, AWS Certified Security ā Specialty, Google Professional Cloud Security Engineer, Other recognized cloud security certifications
Benefits
ā¢ Flexible PTO plan
ā¢ Yearly budget for your individual learning and development goals
Company Overview
ā¢ Xapo Bank is a financial company that provides accounting, bitcoin, global card, and banking services. It was founded in 2014, and is headquartered in Gibraltar, Gibraltar, GIB, with a workforce of 201-500 employees. Its website is https://www.xapobank.com/.
Apply tot his job
Apply To this Job