Senior Cloud Security Engineer

Saviynt is an identity authority platform built to power and protect the world at work. In a world of digital transformation, where organizations are faced with increasing cyber risk but cannot afford defensive measures to slow down progress, Saviynt’s Enterprise Identity Cloud gives customers unparalleled visibility, control and intelligence to better defend against threats while empowering users with right-time, right-level access to the digital technologies and tools they need to do their best work.
We are seeking a highly skilled Senior Cloud Security Engineer with 8 – 10 years of experience to join our team. The ideal candidate will have extensive expertise in cloud security, particularly in AWS and Azure environments, along with strong knowledge of Infrastructure as Code (IAC) using Terraform and Helm Charts. The Cloud Security Engineer will be responsible for ensuring the security and compliance of our cloud infrastructure, designing, and implementing security solutions, and collaborating with cross-functional teams to maintain a secure cloud environment. 

WHAT YOU WILL BE DOING

• Conduct in-depth penetration testing of cloud infrastructure, deployment models, and cloud-native services on AWS and Azure.
• Perform security assessments and penetration testing on Kubernetes clusters (EKS and AKS), including container images and associated components.
• Identify and exploit misconfigurations or vulnerabilities in Kubernetes clusters, workload security, and related cloud environments.
• Analyse and prioritize vulnerabilities across AWS, Azure, and containerized deployments based on risk, impact, and business context.
• Prepare comprehensive reports detailing findings, potential impacts, and actionable remediation steps. Communicate these reports effectively to both technical and non-technical stakeholders.
• Collaborate with Cloud Ops, DevOps, and Cloud Engineering teams to provide expert guidance and support for remediating vulnerabilities in cloud infrastructure and containerized environments.
• Leverage and customize industry-standard security tools (e.g., Trivy, kube-hunter, Aqua, Falco) and develop custom scripts or tools to enhance testing capabilities. Automate repetitive tasks to streamline penetration testing workflows.
• Participate in threat modelling exercises to identify risks specific to AWS, Azure, EKS, and AKS environments.
• Ensure all penetration testing activities adhere to industry standards and compliance frameworks, such as NIST, ISO 27001, CSA, and Kubernetes Security Best Practices.
• Develop and communicate targeted remediation strategies for cloud and container security risks, ensuring alignment with organizational goals and business priorities.
• Mentor and guide junior penetration testers, fostering continuous learning and professional growth in cloud and container security practices.

WHAT YOU BRING

• Bachelor’s degree in computer science, Information Technology, or related field. 
• 8 to 10 years of experience in cloud security, with a focus on AWS and Azure platforms. 
• Strong understanding of cloud security architecture, including network security, identity and access management, encryption, and data protection. 
• In-depth knowledge of AWS and Azure Cloud Platform with strong understanding of security principles, standards, and frameworks (e.g., NIST, CIS, ISO 27001) as applied to cloud environments.
• Hands-on experience with cloud native security services and solutions in AWS and Azure.
• Strong understanding of the Kubernetes (EKS, AKS) and container security best practices.
• Hands-on experience with cloud security tools and technologies, such as cloud security posture management (CSPM) and cloud workload protection platforms (CWPP).
• Proficiency in scripting and automation using Python, PowerShell, Bash Shell, or similar languages. 
• Experience with Infrastructure as Code (IAC) tools like Terraform, Cloud Formation, Helm charts for provisioning and managing cloud resources. 
• Relevant certifications such as AWS Certified Security - Speciality, Azure Security Engineer Associate, Certified Cloud Security Professional (CCSP), or equivalent are a plus. 
• Excellent communication skills with the ability to collaborate effectively with cross-functional teams and stakeholders. 
• Strong problem-solving skills and a proactive approach to identifying and resolving security issues.

Saviynt is an amazing place to work. We are a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work. You will experience tremendous growth and learning opportunities through challenging yet rewarding work that directly impacts our customers, all within a welcoming and positive work environment. If you're resilient and enjoy working in a dynamic environment you belong with us!
Saviynt is an equal opportunity employer, and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.