← Zurück zur Liste
Stelle

Cloud Security Engineer

Security Engineer • Remote • Vollzeit • 📍 Remote (US)

Hex is looking for an experienced Cloud Security Engineer to join its security team. The role is responsible for ensuring the security and resilience of Hex's cloud infrastructure, providing leadership in cloud security practices, and collaborating closely with infrastructure and engineering teams to secure cloud-native applications. The work centers on AWS environments and Kubernetes clusters, including appropriate isolation and sandboxing methods for Hex's RCE-as-a-Service platform.

Responsibilities

  • Design, implement, and manage security solutions and controls for AWS environments and Kubernetes clusters, including isolation/sandboxing methods for Hex's RCE-as-a-Service platform
  • Build, deploy, and maintain infrastructure-as-code using Terraform, ensuring robust security standards are enforced
  • Conduct security assessments, threat modeling, and audits on AWS cloud infrastructure and Kubernetes deployments
  • Collaborate with development and operations teams to embed security best practices into CI/CD pipelines
  • Monitor and respond to cloud security incidents, identifying root causes and recommending remediation actions
  • Provide expertise in compliance requirements related to cloud security (e.g., SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS)
  • Mentor engineers and advocate for cloud security across the organization

Requirements

  • 5+ years of experience in cloud security engineering, with extensive expertise in AWS
  • Demonstrated proficiency with Kubernetes security including cluster hardening, RBAC, network policies, and container vulnerability management
  • Expert-level knowledge and hands-on experience with Terraform
  • Familiarity with AWS security services (e.g., IAM, GuardDuty, Security Hub, CloudTrail, WAF)
  • Familiarity with CNAPP solutions such as Wiz
  • Familiarity with SIEM solutions such as Panther
  • Solid understanding of secure software development lifecycle practices, CI/CD security, and DevSecOps methodologies
  • Excellent problem-solving, communication, and leadership skills

Nice to have

  • Relevant certifications such as AWS Certified Security – Specialty, Certified Kubernetes Security Specialist (CKS), and Terraform Associate
  • Security certifications from SANS or OffSec

Soft skills

Excellent problem-solvingStrong communicationLeadership and advocacy

What we offer

  • Competitive total rewards package with market-benched salary and equity
  • Comprehensive health benefits
  • Flexible paid time off
  • Salary range for this role: $200,000 - $265,000

About the company

Hex builds a web-based notebook and app authoring platform. The frontend uses TypeScript and React with Apollo GraphQL and Redux, the backend uses TypeScript to power an Express/Apollo GraphQL server interacting with Postgres, Redis, and Kubernetes, and deployment relies on Terraform, Helm, and AWS. The engineering team partners closely with Security and writes openly about how it learns from incidents.

Languages: Angol (folyékony)