Role Description At Cloudera, we empower people to transform complex data into clear and actionable insights. We are seeking a technically proficient and proactive Senior Security Engineer to manage and enhance the security of our hybrid IT environment. This role focuses on the hands-on implementation, operation, and continuous improvement of security controls across on-premises data centers and cloud platforms (AWS, Azure, GCP), with an emphasis on identifying, prioritizing, and reducing security risk. You will serve as a key technical resource, owning security initiatives from assessment through remediation and collaborating closely with IT Operations and Product teams to ensure our infrastructure remains resilient. As a Senior Security Engineer, you will: - Security Implementation & Optimization: Deploy and tune security controls across on-premises and cloud environments (IaaS, PaaS, SaaS). Ensure that security architectures designed by leadership are effectively integrated. - Vulnerability Management: Identify, assess, and track security vulnerabilities across infrastructure, cloud environments, endpoints, and applications. Perform risk-based analysis to prioritize remediation, partner with IT and Engineering teams to drive fixes, and validate remediation effectiveness. - Cloud Security Operations: Maintain and monitor security configurations across cloud providers, including managing cloud security groups, IAM roles, and monitoring containerized workloads and serverless functions. - Infrastructure Defense: Manage and troubleshoot on-premises security controls, including firewalls, endpoint protection (EDR), and virtualization security. - Identity & Access Management (IAM): Administer and enforce IAM policies, including SSO integration, MFA rollout, and the management of Privileged Access Management (PAM) tools. - Incident Response: Serve as a core technical responder during security incidents, assisting with investigation, containment, and documentation of post-incident findings. - Automation & Tooling: Maintain security tooling and develop scripts (e.g., Python, Terraform) to automate repetitive security tasks and improve operational efficiency. - Compliance Support: Assist in gathering evidence for audits and ensuring our controls meet industry standards like ISO 27001, SOC 2, or PCI DSS. Qualifications - Education: Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent practical experience). - Experience: 4–6 years of experience in cybersecurity engineering or infrastructure security. - Cloud Proficiency: Hands-on experience configuring security settings within at least one major cloud provider (AWS, Azure, or GCP). - Technical Depth: Solid understanding of network protocols, firewalls, and endpoint security technologies. - Scripting: Ability to use scripting languages (e.g., Python, PowerShell) or Infrastructure as Code (Terraform, CloudFormation) to manage security configurations. - IAM Knowledge: Practical experience managing identity providers (e.g., Okta, Azure AD) and RBAC models. - Communication: Strong ability to document technical processes and communicate security risks to peers and cross-functional partners. - Certifications: Certifications like CompTIA Security+, GIAC (GSEC/GCIH), or Associate-level Cloud Security certifications (e.g., AWS Certified Security Specialty) are a plus. Requirements - This is a high-impact role where your work directly protects our users and data every day. - This role is not eligible for immigration sponsorship. Benefits - Generous PTO Policy - Support work-life balance with Unplugged Days - Flexible WFH Policy - Mental & Physical Wellness programs - Phone and Internet Reimbursement program - Access to Continued Career Development - Comprehensive Benefits and Competitive Packages - Paid Volunteer Time - Employee Resource Groups - EEO/VEVRAA

• Configure, manage, and optimize data protection tools such as DLP solutions, encryption technologies, and cloud security controls. • Conduct data discovery and classification to identify high-risk assets. • Investigate and respond to data breaches and incidents involving sensitive information. • Lead governance projects and analyze alerts and logs to identify data-related security incidents. • Collaborate with IT and legal teams during forensic investigations.

• Responsible for the secure and stable operation of the Microsoft- and Linux-based IT infrastructure. • Administration and further development of the server and VMware environment. • Maintenance of security and network components as well as the backup infrastructure. • Ensuring high availability and data security. • Handling support requests via the ticketing system and assisting with onboarding of new colleagues. • Participation in IT projects and taking ownership of initiatives.

• Design, implement, and improve security controls across cloud, endpoint, and application environments • Evaluate and integrate security tools and technologies to improve coverage and effectiveness • Identify gaps in existing controls and drive remediation • Own control effectiveness and continuously improve based on real-world outcomes • Own and improve detection logic across key security systems in partnership with Security Operations • Co-own detection signal quality with Security Operations, continuously refining signal, reducing noise, and eliminating blind spots • Design and maintain security telemetry pipelines, including log ingestion, normalization, and data quality • Improve logging and visibility across systems to enable effective detection and response • Partner with engineering teams to integrate security into the software development lifecycle • Define and implement security requirements for applications, infrastructure, and CI/CD pipelines • Support secure design and architecture decisions through practical implementation • Build automation and integrations to improve the scalability and efficiency of security operations • Leverage scripting and APIs to reduce manual work and improve consistency • Develop systems that enrich, correlate, and operationalize security data • Use insights from incidents, vulnerabilities, and operational metrics to improve security systems and controls • Contribute to evolving security standards, engineering practices, and technical direction