We are seeking a hands-on Senior Cloud Security Engineer to strengthen our Azure- and AWS-based cloud platforms within a highly regulated banking environment. This role will engineer security guardrails, implement policy-as-code, improve cloud security posture, and secure containerized workloads across public and private cloud environments. What You’ll Do - Implement and enforce Zero Trust controls in Azure - Engineer cloud security baselines across Azure and AWS - Develop policy-as-code using Sentinel, Rego, Python, and Terraform - Embed security into Infrastructure as Code and CI/CD pipelines - Build parity across Azure Policy, Defender for Cloud, and Wiz CSPM - Manage AWS security services including GuardDuty and Config - Improve Cloud Security Posture Management (CSPM) and drive remediation - Develop dashboards and reporting for engineering and leadership - Secure container platforms including: - AWS EKS & ECS - Azure AKS - OpenShift / Rancher - Implement container security controls using tools such as Wiz and Aqua - Deploy and manage EDR agents and runtime security across hybrid environments

• Monitor security systems and respond promptly to security incidents • Conduct regular security assessments and audits • Assist in the implementation and maintenance of security tools and technologies • Analyze security breaches to determine root causes and recommend corrective actions • Stay up to date with the latest cybersecurity trends, threats and technologies • Collaborate with senior analysts and team members to enhance overall cybersecurity posture • Prepare reports and documentation for internal and external stakeholders

• Develop and/or update Power BI dashboards to support contingency management; • Manage training related to contingency and emergency response; • Support the planning and monitor simulated exercises at Operational Units; • Propose actions to enhance leadership knowledge and capabilities; • Monitor implementation of contingency recommendations; • Support development and/or review of Emergency Response Plans; • Advise on preparedness and emergency response matters; • Support the review of procedures and standards related to contingency management; • Deliver presentations on contingency topics; • Monitor internal and external audits; • Assist with data entry into internal systems; • Train staff on accessing systems related to contingency.

• Lead secure design efforts. Partner with engineering teams on secure design and code reviews. Identify and prioritize risks early in the product lifecycle. • Build secure by default systems. Develop paved paths that systemically reduce risk and make secure development the easiest path for engineers. • Perform offensive security testing. Conduct penetration tests and code audits on new and existing products from an adversarial lens. • Improve our security tooling. Integrate and improve our static analysis, supply chain security, and vulnerability management capabilities across engineering pipelines. • Operate our responsible disclosure program. Run and improve our program by furthering automation, validating submissions, and coordinating remediation. • Improve our products. Write and ship code to remediate vulnerabilities in production systems and improve the security posture of WorkOS products. • Work directly with customers. Help build our customers' trust by directly engaging with their security-related questions and concerns.