Bet on your beliefs.
Cloud Security Engineer
Location
United States
Posted
2 days ago
Salary
$180K - $250K / year
Seniority
Mid Level
Job Description
Cloud Security Engineer
Polymarket
Role Description Polymarket is hiring a Cloud Security Engineer to own the security posture of our AWS environment. You'll be embedded in our engineering and security teams, designing and enforcing security controls directly in infrastructure code, building guardrails that scale with the product, and reducing risk without slowing down engineering velocity. This role is hands-on and highly cross-functional. You'll work closely with DevOps, Platform, and Application Engineering to make secure-by-default the path of least resistance. - Own and continuously improve Polymarket's AWS security posture across accounts, regions, and services — including IAM policies, SCPs, VPC segmentation, and account-level security baselines - Review and contribute to IaC modules that encode security defaults; integrate automated security checks into the deployment pipeline including policy-as-code validation and misconfiguration scanning - Own cloud-side security telemetry: CloudTrail, GuardDuty, Security Hub, Config Rules, VPC Flow Logs, and S3 access logging - Develop and tune detection logic for cloud-specific threats; partner with the SOC team on alert fidelity, incident response runbooks, and AWS-level investigations - Govern secrets management using AWS Secrets Manager and SSM Parameter Store; manage KMS key policies, rotation, and envelope encryption patterns - Drive remediation of findings from AWS Inspector, Security Hub, and third-party CSPM tooling; maintain benchmarks aligned to CIS AWS Foundations - Support audit and compliance activities (SOC 2, PCI-DSS, or similar) and conduct regular access reviews to identify and remediate privilege creep Qualifications - 4+ years of experience in cloud security, cloud engineering, or a security-focused infrastructure role - Deep, hands-on expertise with AWS security services: IAM, SCP, GuardDuty, Security Hub, CloudTrail, Config, KMS, WAF, Inspector, and VPC - Hands-on experience writing infrastructure as code (Pulumi, Terraform, CDK, or equivalent) with a security-first mindset - Strong understanding of AWS networking and how misconfigurations translate to real attack surface - Proficiency in at least one scripting or programming language (Python, TypeScript, or Go) for automation and tooling - Ability to evaluate architectural decisions for security risk and communicate findings clearly to engineering peers - (Plus) Familiarity with Pulumi, specifically TypeScript-based stacks - (Plus) Familiarity with Web3, blockchain infrastructure, or crypto-sector threat models - (Plus) Experience securing containerized workloads on ECS or EKS, including image scanning and runtime security - (Plus) AWS certifications: Security Specialty, Solutions Architect — Professional, or equivalent - (Plus) Exposure to SOC 2 Type II or PCI-DSS cloud control requirements Benefits - Competitive salary & equity - Unlimited PTO - Full Health, Vision, & Dental coverage - 401k match - Hardware setup: new MacBook Pro, big display, & accessories
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Assist with monitoring security alerts and investigating potential security incidents. • Support vulnerability scanning and help document findings and remediation efforts. • Participate in security assessments, audits and compliance activities. • Assist with user access reviews and identity and access management processes. • Use data analysis, statistical models, historical information, and financial knowledge to make informed risk exposure and management strategies decisions. • Help develop internal processes and methodologies for risk assessment and risk monitoring. • Perform other cyber security-related projects and tasks as assigned.
Enterprise Account Executive, Cybersecurity
Defy SecurityCybersecurity experts who put customers back where they belong: First.
• Own the enterprise sales cycle — from prospecting and qualification to negotiation and close — across $1B+ revenue organizations. • Engage directly with CISOs, CIOs, and CFOs to align cybersecurity investments to enterprise goals. • Lead multi-stakeholder deals (6–12 months) in partnership with Solutions Architects, Services, and OEM channel partners. • Drive platform adoption — move customers from point products to integrated cybersecurity architectures. • Collaborate cross-functionally with Defy’s Services, Engineering, and Partner teams to deliver client success and measurable outcomes. • Apply consultative methodologies (e.g., MEDDPICC, Challenger, Command of the Message) to position Defy’s value and differentiation. • Consistently exceed quarterly and annual sales goals for bookings, revenue, and gross margin. • Represent Defy with executive presence — leading presentations, proposals, and value discussions with boards and senior leaders.
Enterprise Account Executive – Cybersecurity
Defy SecurityCybersecurity experts who put customers back where they belong: First.
• Own the enterprise sales cycle — from prospecting and qualification to negotiation and close — across $1B+ revenue organizations. • Engage directly with CISOs, CIOs, and CFOs to align cybersecurity investments to enterprise goals. • Lead multi-stakeholder deals (6–12 months) in partnership with Solutions Architects, Services, and OEM channel partners. • Drive platform adoption — move customers from point products to integrated cybersecurity architectures. • Collaborate cross-functionally with Defy’s Services, Engineering, and Partner teams to deliver client success and measurable outcomes. • Apply consultative methodologies (e.g., MEDDPICC, Challenger, Command of the Message) to position Defy’s value and differentiation. • Consistently exceed quarterly and annual sales goals for bookings, revenue, and gross margin. • Represent Defy with executive presence — leading presentations, proposals, and value discussions with boards and senior leaders.
Enterprise Account Executive – Cybersecurity
Defy SecurityCybersecurity experts who put customers back where they belong: First.
• Own the enterprise sales cycle — from prospecting and qualification to negotiation and close — across $1B+ revenue organizations. • Engage directly with CISOs, CIOs, and CFOs to align cybersecurity investments to enterprise goals. • Lead multi-stakeholder deals (6–12 months) in partnership with Solutions Architects, Services, and OEM channel partners. • Drive platform adoption — move customers from point products to integrated cybersecurity architectures. • Collaborate cross-functionally with Defy’s Services, Engineering, and Partner teams to deliver client success and measurable outcomes. • Apply consultative methodologies (e.g., MEDDPICC, Challenger, Command of the Message) to position Defy’s value and differentiation. • Consistently exceed quarterly and annual sales goals for bookings, revenue, and gross margin. • Represent Defy with executive presence — leading presentations, proposals, and value discussions with boards and senior leaders.


