Form3 logo
Form3

We design, build and run the technology that powers the future of payments.

Senior Cloud Security Engineer – AI Resilience, Security Enhancements

Cloud EngineerCloud EngineerContractRemoteSeniorTeam 501-1,000H1B No SponsorCompany SiteLinkedIn

Location

Austria

Posted

4 days ago

Salary

0

Seniority

Senior

Bachelor DegreeEnglishAWSCloud

Job Description

Senior Cloud Security Engineer – AI Resilience, Security Enhancements

Form3

• Assess the current cloud security posture across Form3 environments, identifying risks, control gaps and opportunities for improvement. • Design and implement scalable cloud security controls that improve the resilience and security of our cloud-native platform. • Enhance perimeter security controls across cloud infrastructure. • Strengthen CI/CD pipeline security through secure build processes, automated security testing, deployment governance and artefact integrity. • Improve production access security, including RBAC, least-privilege implementation, deployment tooling and operational processes. • Enhance software supply chain security through dependency management, container image scanning, provenance, signing and vulnerability remediation. • Contribute to the secure adoption and governance of AI-enabled engineering capabilities, including controls for data protection, auditability and operational resilience. • Provide technical leadership and guidance on cloud security architecture and secure engineering practices. • Produce high-quality technical documentation, including solution designs, implementation plans, operational procedures and security evidence. • Collaborate closely with engineering, platform and security teams to deliver maintainable, production-ready security improvements. • Ensure all deliverables align with operational resilience requirements, regulatory obligations and internal security standards. • Deliver changes using structured, low-risk change management practices while maintaining service availability.

Job Requirements

  • Extensive experience designing and implementing cloud security solutions within large-scale cloud-native environments.
  • Strong hands-on experience securing public cloud platforms (AWS preferred).
  • Expertise in cloud security architecture, identity and access management, workload protection and infrastructure security.
  • Experience securing CI/CD pipelines and modern software delivery practices.
  • Strong understanding of software supply chain security, including dependency management, artefact signing, provenance and vulnerability management.
  • Experience implementing least-privilege access models and RBAC.
  • Knowledge of security monitoring, risk assessment and security governance.
  • Experience working within highly regulated or business-critical production environments.
  • Excellent stakeholder management and communication skills, with the ability to influence engineering teams.
  • Strong technical documentation and design skills.

Benefits

  • Flexible work arrangements
  • Professional development opportunities

Related Categories

Related Job Pages

More Cloud Engineer Jobs

AgileEngine logo

Python Engineer

AgileEngine

AgileEngine is an Inc. 5000 company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries. We rank among the leaders in areas like application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.

Cloud Engineer4 days ago
Full TimeRemoteTeam 1,001-5,000

Role Description We are looking for a Python Engineer to contribute hands-on to a follow-the-sun DevSecOps pod, writing Python scripts to integrate SAST, DAST, and SCA security gates into CI/CD pipelines and tuning scanning tools to reduce false positives. You will deploy automated hardened baselines and provide code-level remediation guidance to development teams, operating with minimal supervision on complex scripting and integration tasks. The role requires 3–5 years of software engineering experience with strong Python proficiency and CI/CD familiarity. Qualifications - 3–5 years of commercial experience in software engineering; - Solid coding proficiency in Python for automation and scripting; - Working knowledge of modern CI/CD orchestration tools and practical experience interacting with vulnerability scoring frameworks; - Ability to operate with minimal supervision on day-to-day execution and reliably complete complex scripting and integration tasks; - Upper-intermediate English level. Requirements - Experience in DevSecOps or Application Security; - Ability to comfortably read and navigate Java source code; - Hands-on experience with CNAPP or ASPM platforms such as Wiz; - Basic understanding of application threat modeling. Benefits - Professional growth: Mentorship, TechTalks, and personalized growth roadmaps. - Competitive compensation: USD-based pay with education, fitness, and team activity budgets. - Exciting projects: Modern solutions with Fortune 500 and top product companies. - Flextime: Flexible schedule with remote and office options.

Mexico
Mosaic logo

Manager, Cloud Architecture

Mosaic

Embracing God’s call, Mosaic relentlessly pursues opportunities that empower people.

Cloud Engineer4 days ago
Full TimeRemoteTeam 1,001-5,000Since 1913H1B Sponsor

• Execute the enterprise cloud strategy (Azure-primary, multi-cloud aware) across IaaS, PaaS, SaaS, and hybrid environments, ensuring the team delivers to architectural standards set by the Director. • Own day-to-day Azure operations — compute, storage, networking, identity, and cost governance — with full accountability for platform health and SLA adherence. • Lead FinOps execution: monitor cloud spend, enforce tagging and cost allocation standards, identify and deliver optimization targets, and report performance to the Director. • Oversee the SaaS portfolio operationally — ensuring integrations are secure, platforms are governed to standard, and lifecycle management is current. • Drive automation adoption across the team to eliminate manual toil, accelerate delivery, and improve operational consistency. • Manage server, storage, and virtualization environments — compute lifecycle, hypervisor platforms, SAN/NAS/object storage — ensuring capacity, performance, and resilience standards are met. • Oversee endpoint and profile engineering, including Okta administration and access management, ensuring identity hygiene and least-privilege standards are maintained. • Lead the team’s contribution to high availability and disaster recovery capabilities — executing DR tests, maintaining runbooks, and ensuring audit-ready HIPAA contingency plan documentation. • Partner with network engineering peers to ensure cloud and infrastructure architecture integrates seamlessly with WAN/LAN and Zero Trust initiatives. • Oversee IAM engineering operations — provisioning, deprovisioning, role-based access control, and privileged access management — ensuring controls satisfy HIPAA, HITRUST, and internal governance standards. • Govern Okta platform operations: SSO, MFA, lifecycle management, and integration with enterprise applications. • Work closely with InfoSec to ensure identity and access controls are current, auditable, and aligned with the organization’s Zero Trust architecture direction. • Lead, develop, and retain a high-performing team of six to seven engineers across systems, network, and identity disciplines — setting clear expectations, coaching to growth, and managing performance proactively. • Establish and maintain operational cadences: incident management, change control, problem management, and capacity planning — all grounded in ITSM best practices. • Maintain enterprise monitoring and observability standards across infrastructure domains, ensuring the team operates proactively with full visibility into platform health. • Support vendor and partner management at the operational level — holding providers accountable to SLAs and escalating contract or performance issues to the Director. • Collaborate with cross-functional IT teams and business stakeholders as a trusted execution partner, communicating platform status, risk, and roadmap clearly and without jargon. • Perform other related duties as assigned.

North Carolina
$93.7K - $140.5K / year
Full TimeRemoteTeam 1,001-5,000Since 1980H1B Sponsor

• Design, implement, and maintain secure, scalable Azure cloud infrastructure supporting enterprise applications and customer-facing platforms. • Build and manage Azure services including Virtual Networks, AKS, Azure App Services, Azure Functions, Storage, Key Vault, SQL Database, Cosmos DB, and other core platform services. • Implement infrastructure-as-code solutions using Terraform, Bicep, ARM templates, or similar technologies. • Drive cloud architecture improvements focused on scalability, resiliency, performance, and cost optimization. • Develop automated provisioning, deployment, and operational workflows. • Enhance CI/CD pipelines and deployment automation using Azure DevOps, GitHub Actions, or similar platforms. • Improve developer productivity through self-service infrastructure and platform capabilities. • Establish infrastructure standards, reusable modules, and engineering best practices. • Design and implement monitoring, alerting, logging, and observability solutions. • Partner with Security Engineering to implement cloud security controls, compliance requirements, and governance standards. • Support incident response, root cause analysis, problem management, and service restoration activities. • Drive proactive reliability improvements and continuous operational excellence. • Lead complex cloud infrastructure initiatives with minimal supervision. • Evaluate emerging technologies and recommend improvements to platform architecture. • Mentor engineers and provide technical guidance across teams. • Partner with Engineering, Product, Architecture, Security, and Operations teams to deliver business outcomes. • Communicate technical concepts effectively to both technical and non-technical stakeholders.

Illinois
$106.3K - $165K / year
Job Closed
Runpod logo

Cloud Infrastructure Security Engineer

Runpod

Runpod is pioneering the future of AI and machine learning, offering cutting-edge cloud infrastructure for full-stack AI applications. Founded in 2022, we are a rapidly growing, well-funded company with a remote-first organization spread globally. Our mission is to empower innovators and enterprises to unlock AI's true potential, driving technology and transforming industries. Join us as we shape the future of AI. We are building Cloud services focused on accelerating AI adoption. Whether you're an experienced ML developer training a large language model, or an enthusiast tinkering with stable diffusion, we strive to make GPU compute as seamless and affordable as possible.

Cloud Engineer4 days ago
Full TimeRemoteTeam 80Since 2022

Role Description As RunPod continues to revolutionize the GPU cloud computing landscape, we are seeking a systems-focused Cloud Infrastructure Security Engineer. This critical position is instrumental in safeguarding our bare-metal and virtualized environments, ensuring the absolute security, multi-tenant isolation, and integrity of our underlying GPU cloud infrastructure. The ideal candidate possesses deep knowledge of Linux systems, kernel internals, hypervisors, and containerization. You will focus on the lowest levels of our stack—preventing tenant breakouts, securing GPU hardware allocations, and building resilient infrastructure to support AI and machine learning workloads. RunPod is seeking an innovative security engineer who thrives at the systems layer. You will operate with an Attacker's Mindset, actively hunting for ways to break container and virtualization boundaries, and then writing the low-level code to patch them. Responsibilities - Design and implement robust workload and network isolation architectures for RunPod's multitenant GPU bare-metal and virtualized environments. - Harden Linux kernel configurations, container runtimes (e.g., Docker, containerd), and orchestration layers (e.g., Kubernetes) against breakouts and privilege escalation. - Conduct deep-dive security assessments and penetration testing specifically targeting our hypervisor, network stack, and hardware interfaces. - Write code (primarily C, Go, or Rust) to implement custom security controls, telemetry, and fixes at the OS and infrastructure level. - Evaluate and mitigate security considerations specific to GPU architecture, PCIe pass-through, and shared memory spaces. - Serve as the technical escalation point for infrastructure-level security incidents, developing forensic capabilities for ephemeral container environments. Qualifications - 5+ years of experience in infrastructure or systems-level security engineering. - Extensive knowledge of Linux kernel internals (cgroups, namespaces, eBPF, SELinux/AppArmor). - Deep understanding of virtualization technologies (KVM, QEMU) and workload/network isolation techniques in multitenant environments. - Strong systems-level programming skills in C, Go, Rust, or Python. - Familiarity with GPU architecture and hardware-level security considerations. - Experience in securing bare-metal cloud infrastructure and mitigating lower-level CVEs. Preferred Qualifications - Contributions to open-source systems security projects or virtualization research. - Experience writing or deploying eBPF-based security tooling. - Deep knowledge of low-level networking protocols and virtualized network security. Benefits - The competitive base pay for this position ranges from ($152,000 - $175,000). - Meaningful equity in a fast-growing company — everyone on the team receives stock options. - Generous medical, dental & vision plans. - Flexible PTO - take the time you need to recharge. - Most roles are remote work first with an inclusive, collaborative teams utilizing Slack as the main form of internal communication. - $1,200 Home Office & Equipment Stipend - we set you up for success from day one with gear and support to create your ideal workspace.

United States
$152K - $175K / year