← all jobs

[Remote] Staff Cloud Security Engineer

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Engine is a company focused on transforming business travel through technology, aiming to simplify and personalize the travel experience. They are seeking a Staff Cloud Security Engineer to secure and scale their cloud environments across AWS and GCP, with responsibilities including cloud security architecture, risk management, and cross-functional collaboration.

Responsibilities

  • Lead security hardening across AWS and GCP environments, including identity and access management, network segmentation, logging, monitoring, configuration hygiene, and secure cloud architecture patterns. You will help define standards that scale across teams and cloud platforms
  • Own and mature Engine’s approach to identifying, prioritizing, and remediating cloud security risks. You will assess systemic risk, separate high-priority issues from low-value noise, and drive practical remediation in partnership with infrastructure and engineering teams
  • Own the end-to-end lifecycle of Orca findings, including monitoring new alerts, triaging severity, identifying root cause, tracking remediation, and driving findings to closure with the appropriate technical owners
  • Serve as a primary responder for cloud-specific security alerts. You will help improve detection quality, reduce response time, and ensure cloud-originated threats are investigated and addressed effectively
  • Partner with teams using Terraform and related infrastructure-as-code workflows to review, improve, and harden cloud configurations before risk reaches production
  • Help secure Engine’s expanding AI-related cloud footprint by identifying risks related to sensitive data, elevated IAM permissions, new service integrations, model/data access patterns, and infrastructure configurations
  • Partner closely with infrastructure, platform, engineering, SecOps, and security leadership to move security work forward. You will adapt your messaging across audiences, build trust with technical teams, and influence decisions without relying on direct authority
  • Collaborate with SecOps to improve cloud telemetry, cloud-specific detection logic, SIEM signal quality, and response workflows for threats such as credential abuse, lateral movement, misconfigured storage, and data exfiltration
  • Build clear, actionable cloud security guidelines, guardrails, and best practices for engineering teams. You will help create the paved paths that allow Engine to move quickly while reducing cloud security risk

Skills

  • Deep hands-on experience securing modern cloud environments, especially AWS, with strong knowledge of cloud-native security controls, services, risks, and remediation patterns
  • Experience with GCP security or the ability to quickly ramp in a multi-cloud environment spanning AWS and GCP
  • Strong understanding of cloud IAM, privilege reduction, identity boundaries, service permissions, key management, and common access-control failure modes
  • Ability to evaluate architecture decisions, identify systemic risk, and recommend scalable security patterns that balance risk reduction with engineering velocity
  • Experience with cloud security platforms such as Orca, Wiz, Prisma Cloud, Lacework, or similar tools, including triage, prioritization, remediation tracking, and reduction of alert noise
  • Hands-on experience reviewing and securing Terraform or other infrastructure-as-code configurations
  • Experience investigating cloud security alerts and improving telemetry, logging, monitoring, and detection logic across cloud environments
  • Proven ability to earn credibility with infrastructure, platform, and engineering teams through practical recommendations, clear communication, and strong technical depth
  • Ability to assess complex, ambiguous cloud security issues, identify root causes, prioritize risk, and make sound decisions with incomplete information
  • Experience building or improving cloud security standards, guardrails, operating rhythms, remediation processes, or security review practices
  • Understanding of how AI workloads can expand cloud attack surface through sensitive data usage, elevated permissions, new integrations, and infrastructure complexity
  • Familiarity with cloud security concepts as they relate to compliance frameworks such as SOC 2, PCI, or similar standards

Benefits

  • Opportunities for bonuses, commissions, and equity
  • Hybrid-hub model
  • Whether you are in one of our amazing offices or fully remote, we’ll make sure you have what you need to succeed

Company Overview

  • Hotel Engine is now Engine. It was founded in 2018, and is headquartered in Denver, Colorado, USA, with a workforce of 501-1000 employees. Its website is http://www.engine.com.
  • Company H1B Sponsorship

  • Hotel Engine has a track record of offering H1B sponsorships, with 3 in 2023, 5 in 2021, 1 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Program Manager

    Work from home Full-time role

    [Remote] Sr Account Manager

    Work from home Full-time role

    [Remote] Sr. Machine Learning Solutions Architect

    Work from home Full-time role

    [Remote] Vice President, Clinical Development (Oncology & Molecular Diagnostics)

    Work from home Full-time role

    [Remote] Senior Software Engineer I - Finance Systems (Remote Eligible)

    Work from home Full-time role

    Remote Bioinformatics

    Work from home Full-time role

    [Remote] Good Hands Repair Network Inside Technician Consultant

    Work from home Full-time role

    Hybrid Medical Records Data Collector; Onsite​/Remote

    Work from home Full-time role

    Tax Director | SALT - Financial Services - National Tax Office

    Work from home Full-time role

    Remote Customer Service Representative – Flexible Schedule, Career Advancement, Comprehensive Benefits, and Upsell Opportunities

    Work from home Full-time role

    Senior Software Engineer, Windows/Desktop Applications - Norfolk, VA, USA

    Work from home Full-time role

    Senior Data Analyst

    Work from home Full-time role

    [Remote] Account Executive

    Work from home Full-time role

    Remote Curriculum Designer

    Work from home Full-time role

    [Remote] Temporary Legal Specialist

    Work from home Full-time role

    [Remote] Financial Professional Trainee - Remote

    Work from home Full-time role

    Creative Director, Art (Remote)

    Work from home Full-time role

    [Remote] Sr Commercial Account Executive - Michigan

    Work from home Full-time role

    Regional Vice President, Commercial

    Work from home Full-time role

    Remote sales support – no experience needed | flexible hours + bonuses - globe life: ao

    Work from home Full-time role

    SAP Integration Suite (CPI) Developer

    Work from home Full-time role