Cloud Security Engineer 

You want to join a dynamic team with a DevOps culture within a large group, but with a startup mindset, at the heart of global digital transformation? If so, this position is for you!  

Within the Technical Department of our Cloud division, ArrowSphere Cloud (approximately 80 people), we are currently building a Security Team to strengthen the security of our platform and work closely with all stakeholders across the organization.  

The Security team collaborates regularly with Engineering, Product, Product Owners, Support, FinOps, and DevOps teams. You will have the opportunity to engage with integrations involving major Cloud providers (Microsoft, AWS, Google, IBM Cloud, etc.) in an international environment, with the advantage that nearly the entire R&D organization is based in France.  

We operate in an agile environment with multiple production releases every day, supported by an established CI/CD pipeline (Jira, Bitbucket, Jenkins, AWS). The teams are autonomous and currently responsible for production deployments, fostering a strong culture of ownership and continuous improvement.   
  
We are looking for a Cloud Security Engineer to strengthen our cloud security posture and support secure-by-design practices across cloud infrastructure and application environments.  

You will work closely with DevOps, Infrastructure, and Security teams to design, implement, and continuously operate and improve security controls across cloud platforms.  

What will you be doing? 
In this role, your responsibilities will include: 

• Implement and maintain cloud security controls in alignment with internal policies, security standards, and compliance requirements. 

• Conduct security risk assessments, perform vulnerability reviews, and support internal and external audits and compliance documentation. 

• Monitor cloud environments for security threats, vulnerabilities, and unauthorized access, while supporting incident response and remediation activities. 

• Manage IAM, encryption, firewall configurations, and security best practices across cloud environments. 

• Collaborate with infrastructure and development teams to enhance the platform's security posture, maintain secure configurations, and ensure operational resilience. 

What are we looking for? 
We would be happy to meet candidates who meet the following criteria: 

• (3+) years in Cloud Security, DevSecOps, or Infrastructure Security.   

• Hands-on experience securing at least one major cloud platform (AWS, Azure, or GCP). 

• Experience with IAM, roles, policies, and access governance.  

• Knowledge of secure CI/CD pipelines and DevSecOps practices.  

• Experience with vulnerability scanning and remediation.  

• Understanding of cloud-native and serverless security models.  

• Familiarity with ISO 27001 or similar security frameworks.  

• Relevant cloud or security certifications such as CCSP, CCSK, AWS, Azure, or Google Cloud certifications are a plus. 

What we offer: 

• Permanent contract 

• Remote work 

#LI-KK1 #LI-REMOTE