Senior Cloud Security Engineer securing public cloud platforms and services in the financial industry. Collaborating with teams to enhance security posture and ensure compliance in cloud environments.
About the role
- CISO leading hands-on security operations and compliance initiatives at identity solutions startup 1Kosmos. Building and managing security infrastructure while collaborating with technical teams.
Responsibilities
- **Key Responsibilities **
- **Security Operations Leadership (Primary Focus) **
- Design, implement, and manage a comprehensive security operations infrastructure
- Personally configure and deploy security tools, including endpoint protection, SIEM, and cloud security solutions
- Build and optimize security monitoring, incident response, and threat detection capabilities
- Drive automation initiatives to eliminate manual inefficiencies in security processes
- **Compliance and Risk Management **
- Lead compliance initiatives including FedRAMP, SOC 2, and other regulatory frameworks
- Partner with business analysts to navigate regulatory requirements and audits
- Develop and maintain security policies, procedures, and documentation
- Manage security risk assessments and remediation programs
- **Technical Security Architecture **
- Secure cloud infrastructure across AWS, Google Cloud, and other platforms
- Integrate security into CI/CD pipelines, working closely with DevOps teams
- Implement and manage security tools (CrowdStrike, etc.) across the organization
- Conduct hands-on security reviews of architecture and code
- **Cross-functional Collaboration **
- Partner directly with development and engineering teams on secure software development
- Oversee internal IT security (smaller component of role)
- Communicate security initiatives and status to leadership and stakeholders
- Coordinate with global teams to ensure consistent security practices
Requirements
- **Required Qualifications **
- **Technical Expertise **
- **Minimum 7+ years in security operations **with demonstrated hands-on experience
- Deep expertise in cloud security (AWS, Google Cloud, Azure)
- Proven ability to personally deploy and configure enterprise security tools
- Strong understanding of modern DevOps practices and CI/CD security integration
- Experience with security automation and orchestration
- **Compliance and Governance **
- Hands-on experience with FedRAMP certification processes
- Track record of achieving and maintaining SOC 2, ISO 27001, or similar certifications
- Understanding of regulatory compliance requirements and audit processes
- Leadership and Communication
- Experience leading security initiatives in fast-growing organizations
- Strong communication skills for collaborating with global, distributed teams
- Ability to translate technical security concepts for various stakeholders
- Comfortable working in a startup environment with evolving requirements
- **Preferred Qualifications **
- Currently in a similar-sized company CISO role, or a Deputy CISO, Director of Security Operations, or similar "CISO minus one" role at a larger organization
- Experience in identity management or authentication technologies
- Background in both security operations and security engineering
- Previous startup or scale-up experience
- Located in or willing to work EST hours (strong preference for NY/NJ area)
- Public-facing CISO experience (client communications) is a plus but not required
Benefits
- **What We Offer **
- Opportunity to build and shape security at a growing startup
- Direct impact on product and company security posture
- Collaborative environment with talented engineering teams
- Competitive compensation and equity package
- Flexible work arrangements with preference for hybrid in NY/NJ area
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Cybersecurity Metrics and Reporting Lead overseeing development of security metrics and dashboards. Collaborating with teams to improve cybersecurity program effectiveness and compliance tracking.
Senior Developer in Defensive Security for Clio, a leader in legal AI technology. Join a team to proactively tackle application security vulnerabilities and enhance security practices.
Intern role in emerging network systems at KBR Mission Technical Solutions. Focused on network interconnection problems and quality of service metrics in a collaborative environment.
Director of Product Security leading cybersecurity initiatives for medical devices at LivaNova. Ensuring patient safety and compliance with regulatory demands across product lifecycle.
Security Engineer driving modernization and improvements in KPMG's cybersecurity services. Engaging in technology evaluation, process innovation, and stakeholder communication.
Identity and Access Security Analyst at HII’s Newport News Shipbuilding focusing on SAP Security skills. Designing secure operating systems and conducting security assessments.
Senior Security Specialist ensuring compliance and security measures at Disney. Supporting audit processes and collaborating on risk assessments to enhance cybersecurity.
Risk Analyst supporting Keyloop’s Security Governance by managing information security risks. Identifying and monitoring risks while ensuring compliance with regulatory standards.
Cloud Security Engineer responsible for designing and implementing security controls for cloud environments at Keyloop. Ensuring secure adoption and compliance while working with platform and engineering teams.