Staff Cloud Security Engineer

We’re looking for problem solvers, innovators, and dreamers who are searching for anything but business as usual. Like us, you’re a high performer who’s an expert at your craft, constantly challenging the status quo. You value inclusivity and want to join a culture that empowers you to show up as your authentic self. You know that success hinges on commitment, that our differences make us stronger, and that the finish line is always sweeter when the whole team crosses together.

We’re looking for problem solvers, innovators, and dreamers who are searching for anything but business as usual. Like us, you’re a high performer who’s an expert at your craft, constantly challenging the status quo. You value inclusivity and want to join a culture that empowers you to show up as your authentic self. You know that success hinges on commitment, that our differences make us stronger, and that the finish line is always sweeter when the whole team crosses together.

Overview

As Cloud Security Engineer, you will play a pivotal role in shaping the go-forward security of cloud deployments for the enterprise. This is a critical role within the Information Security organization and will regularly interface with all levels of the company while providing guidance and strategic support in a cross-functional capacity.

Primary Responsibilities

• Design and implement security controls and automation for cloud-native applications and infrastructure.
• Collaborate with software and DevOps teams to integrate security throughout the SDLC, from design to deployment.
• Enhance security posture in multi-cloud environments (AWS, GCP, Azure) through the use of native and third-party security tools.
• Contribute to security architecture decisions and conduct design and code reviews with a focus on secure coding practices.
• Develop and maintain cloud security standards, guidelines, policies, and best practices.
• Participate in threat modeling, risk assessments, and vulnerability remediation for cloud environments.
• Monitor and respond to security issues and incidents related to cloud infrastructure and services.
• Drive secure DevOps practices (DevSecOps), including CI/CD pipeline integration of scanning tools (SAST, DAST, SCA, Container Security).
• Provide subject matter expertise on areas such as IAM, key management, cryptography, secure networking, and container security.
• Conduct research and stay up to date with the latest threats, vulnerabilities, and regulatory requirements affecting cloud security.
  
  

Requirements

• Bachelor’s degree in computer science, information technology, or related field
• Proven prior experience and demonstrable recurring success in building and implementing secure cloud deployments architected to scale
• Expertise in security best practices across multiple cloud providers (AWS, GCP, Azure)
• Strong familiarity with cloud concepts including compute, IAM, KMS, VPC, and others
• Expertise in cloud native security services such as Security Hub, Config, Security Command Center, Sentinel, and others
• Proven experience with common industry frameworks (NIST CSF, NIST RMF, SOC2, etc.)
• Strong ability to build trusted relationships, server as a trusted advisor, and influence strategic decisions
• Excellent communication skills (written and verbal) with an ability to articulate complex topics in a business understandable manner
  
  

Bonus

• Experience in automation for security controls, review of baseline security architecture, and implementation of secure solutions
• Experience maturing an organizations security posture with SaaS products
• Prior software development and DevOps experience is a plus
  
  

Find yourself checking a lot of these boxes but doubting whether you should apply? At Alteryx, we support a growth mindset for our associates through all stages of their careers. If you meet some of the requirements and you share our values, we encourage you to apply. As part of our ongoing commitment to a diverse, equitable, and inclusive workplace, we’re invested in building teams with a wide variety of backgrounds, identities, and experiences.

This position involves access to software/technology that is subject to U.S. export controls. Any job offer made will be contingent upon the applicant’s capacity to serve in compliance with U.S. export controls.

---