Senior Cloud Security Engineer at Vigil

SUMMARY:

As a Senior Cloud Security Engineer, you will be responsible for designing, implementing, and monitoring security controls to ensure a robust security posture in a fast-evolving environment. You will lead efforts to safeguard digital channels that collectively generate billions in annual revenue, ensuring our systems remain secure, resilient, and innovative against evolving threats.

We are looking for candidates who are as excited about pushing their own development as they are about advancing our technology stack.

Our team is passionate about security engineering and enjoys developing their skills and abilities in a friendly and supportive environment of keen learners.

WHAT WILL YOU BE DOING:

You will join our security team and be a valued member working closely in a collaborative, autonomous, cross-functional team. You will help with the following:

• Design and implement robust security frameworks across multi-cloud environments (AWS, GCP, Azure), integrating security into every layer from network configuration to identity management.
• Architect secure containerised environments using platforms like Kubernetes, Docker, and ECS, focusing on vulnerability mitigation and compliance automation.
• Develop and enforce cloud security policies, driving compliance with frameworks like CIS Benchmarks, NIST, and SOC2.
• Guide cloud migration efforts, ensuring security considerations are addressed throughout the migration to cloud-native infrastructures.
• Integrate security into SDLC and CI/CD pipelines, collaborating with development and DevOps teams to prioritise security through automation and vulnerability scanning.
• Enhance container security by working with cross-functional teams to secure container orchestration platforms and mitigate related risks.
• Conduct security assessments and support incident response to identify and address potential security weaknesses in cloud environments.
• Stay updated on emerging threats and industry trends, evaluating new security tools and technologies to enhance cloud security posture.
• Provide training and mentorship to engineering and DevOps teams, fostering a security-first culture.

WHAT WE ARE LOOKING FOR:

• AWS Expertise and Cloud Security Experience:
  
  • Proven experience implementing and managing security controls in AWS environments.
  • Familiarity with GCP and Azure is a plus.
  • Experience with Git repositories (e.g., GitHub, GitLab) and serverless architectures like AWS Lambda.
  • Understanding of cloud security frameworks like AWS Well-Architected Framework and CIS Benchmarks.
    
• Cloud Networking Skills:
  
  • Experience configuring and securing VPCs, Subnets, Security Groups, and Network ACLs.
  • Expertise with CDNs, Web Application Firewalls (WAF), and DDoS protection.
  • Ability to design and enforce security policies for secure application delivery.
    
• Infrastructure and Compliance as Code:
  
  • Proficient with Infrastructure as Code tools like Terraform and AWS CloudFormation.
  • Knowledge of Policy as Code frameworks such as OPA or AWS Config.
  • Experience advocating for security automation and DevSecOps practices.
    
• Engineering Mindset:
  
  • Excellent troubleshooting and problem-solving skills.
  • Ability to implement solutions that enhance security posture.
  • Analytical approach to refining automation workflows and security controls.
• Experience working in Agile development environments.
• Strong English communication skills, both written and verbal.

AWESOME BUT NOT REQUIRED:

• Certifications such as CCSP, AWS Certified Security, AWS Certified DevOps Engineer, AWS Certified Solutions Architect, or CompTIA Cloud+.

WHAT’S IN IT FOR YOU?

• Be part of our collegial environment where responsibility and authority are shared equally amongst colleagues and help create our company culture
• A culture in which we don’t criticise failure but ensure we learn from our mistakes
• An Agile environment where your ideas are welcome
• The possibility to grow and experience different projects
• Ongoing Training & Mentoring
• The possibility to travel

- ATTENTION! THIS POSITION IS FOR PORTUGAL OR BRAZIL BASED ONLY