[Remote] Principal Cloud Security Engineer (Remote - Work from Anywhere)
Note: The job is a remote job and is open to candidates in USA. Xapo Bank is a fully distributed team committed to economic freedom and wealth protection. They are seeking a seasoned Principal Cloud Security Engineer to secure their cloud-native infrastructure and services across AWS, GCP, and other environments, ensuring a security-first approach in their global digital banking and crypto platform.
Responsibilities
β’ Architect, implement, and maintain cloud security controls across AWS and GCP to protect our infrastructure, applications, and data
β’ Take full ownership of security projects, driving them from initial concept through development, testing, and deployment
β’ Review, write and deploy infrastructure-as-code (IaC) security solutions using Terraform
β’ Continuously assess cloud environments using Cloud Security Posture Management (CSPM) platforms like Wiz
β’ Support monitoring, detection, and response for cloud threats by integrating with tools such as AWS GuardDuty, Security Hub, and GCP Security Command Center
β’ Participate actively in incident response and forensic analysis for cloud-related security events
β’ Collaborate with cross-functional teams to perform threat modeling and secure architecture reviews for new services and infrastructure changes
β’ Help reinforce a security-first culture by sharing best practices and participating in awareness initiatives
Skills
β’ 5+ years of experience in cloud security engineering, DevSecOps, or related infrastructure security roles
β’ Demonstrable expertise in securing cloud environments (especially AWS and/or GCP)
β’ Strong hands-on experience with securing AWS and/or GCP environments (IAM, VPCs, workload protection, encryption, etc.)
β’ Proficiency in Terraform, with a focus on building and enforcing secure cloud infrastructure
β’ Solid experience with cloud-native security tools and CSPM solutions like Wiz, Prisma Cloud, or Orca Security
β’ Familiarity with security frameworks and standards (e.g., NIST, CIS, ISO) and their practical application in cloud environments
β’ Familiarity with container security concepts
β’ Solid grasp of DevSecOps principles, with proven experience integrating security into CI/CD pipelines and operational processes
β’ Excellent problem-solving abilities, with a proactive mindset and the capability to adapt to new challenges in dynamic environments
β’ A dedicated workspace
β’ A reliable internet connection with the fastest speed possible in your area
β’ Alignment with Our Values and the Xapo Values-Driven Leadership principles
β’ Relevant certifications are a plus, such as: AWS Certified Solutions Architect, AWS Certified Security β Specialty, Google Professional Cloud Security Engineer, Other recognized cloud security certifications
Benefits
β’ Flexible PTO plan
β’ Yearly budget for your individual learning and development goals
Company Overview
β’ Xapo Bank is a financial company that provides accounting, bitcoin, global card, and banking services. It was founded in 2014, and is headquartered in Gibraltar, Gibraltar, GIB, with a workforce of 201-500 employees. Its website is https://www.xapobank.com/.
Apply tot his job
Apply To this Job
Responsibilities
β’ Architect, implement, and maintain cloud security controls across AWS and GCP to protect our infrastructure, applications, and data
β’ Take full ownership of security projects, driving them from initial concept through development, testing, and deployment
β’ Review, write and deploy infrastructure-as-code (IaC) security solutions using Terraform
β’ Continuously assess cloud environments using Cloud Security Posture Management (CSPM) platforms like Wiz
β’ Support monitoring, detection, and response for cloud threats by integrating with tools such as AWS GuardDuty, Security Hub, and GCP Security Command Center
β’ Participate actively in incident response and forensic analysis for cloud-related security events
β’ Collaborate with cross-functional teams to perform threat modeling and secure architecture reviews for new services and infrastructure changes
β’ Help reinforce a security-first culture by sharing best practices and participating in awareness initiatives
Skills
β’ 5+ years of experience in cloud security engineering, DevSecOps, or related infrastructure security roles
β’ Demonstrable expertise in securing cloud environments (especially AWS and/or GCP)
β’ Strong hands-on experience with securing AWS and/or GCP environments (IAM, VPCs, workload protection, encryption, etc.)
β’ Proficiency in Terraform, with a focus on building and enforcing secure cloud infrastructure
β’ Solid experience with cloud-native security tools and CSPM solutions like Wiz, Prisma Cloud, or Orca Security
β’ Familiarity with security frameworks and standards (e.g., NIST, CIS, ISO) and their practical application in cloud environments
β’ Familiarity with container security concepts
β’ Solid grasp of DevSecOps principles, with proven experience integrating security into CI/CD pipelines and operational processes
β’ Excellent problem-solving abilities, with a proactive mindset and the capability to adapt to new challenges in dynamic environments
β’ A dedicated workspace
β’ A reliable internet connection with the fastest speed possible in your area
β’ Alignment with Our Values and the Xapo Values-Driven Leadership principles
β’ Relevant certifications are a plus, such as: AWS Certified Solutions Architect, AWS Certified Security β Specialty, Google Professional Cloud Security Engineer, Other recognized cloud security certifications
Benefits
β’ Flexible PTO plan
β’ Yearly budget for your individual learning and development goals
Company Overview
β’ Xapo Bank is a financial company that provides accounting, bitcoin, global card, and banking services. It was founded in 2014, and is headquartered in Gibraltar, Gibraltar, GIB, with a workforce of 201-500 employees. Its website is https://www.xapobank.com/.
Apply tot his job
Apply To this Job