About the Role
Fivetran is building data pipelines to power the modern data stack for thousands of companies. We're looking for a Cloud Security Engineer to join Fivetran's Platform Security team. In this role, you will be a security expert interfacing with Fivetran's Site Reliability (SRE) and Engineering teams to design infrastructure solutions and ensure our data pipeline service is configured correctly to follow security best practices while improving the services' performance and reliability.
The work is very diverse — Fivetran is a multi-cloud environment operating on AWS, GCP, and Azure. You will help select security tools as well as implement improvements within our environments and assist in developing new processes to raise our security posture.
This is a full-time remote position anywhere in the US.
Technologies You’ll Use
Bash, Python, JS, BigQuery, Azure, AWS, GCP, Terraform, Docker, Kubernetes, Github, Buildkite, Sonar, SAST, SCA, DAST, WAF, ASPM, CSPM, IDR Tooling
What You'll Do
- Develop and implement cloud security strategies, policies, and procedures to protect our multi-cloud environments' confidentiality, integrity, and availability
- Implement and manage security policies, cloud security standards, and best practices for Fivetran
- Recommend industry-standard controls in the cloud that meet compliance requirements
- Validate and assist with the remediation of security issues in infrastructure and cloud workloads
- Collaborate with product teams to identify cloud solutions for customers
- Provide remediation guidance to engineering teams to help them make the right security decisions that meet business requirements
- Help identify security gaps and provide guidance on how to configure Azure/AWS/GCP accounts to comply with best practices and security standards
Skills We're Looking For
- Experience securing cloud architecture in multiple cloud environments (AWS, Azure, GCP)
- Collaborative experience working closely with product teams, SRE/DevOps, and developers to drive the adoption of a security mindset into processes and habits
- Proven ability to perform in-depth security reviews of SaaS product architecture and its supporting infrastructure
- In-depth knowledge of security concepts, principles, and best practices, including network security, encryption, authentication, and authorization
- Hands-on experience with automation tools and scripting languages (e.g., Python, PowerShell) for security automation and orchestration
- Experience in developing infrastructure-as-a-code using Terraform, CloudFormation CI/CD, GitHub
- Experience in container-based deployments (Kubernetes, Docker, GKE, EKS, AKS)
- A strong understanding of how to architect, deploy, and maintain security tools and services, including agent based firewalls, IDS/IPS, and IDR tooling
- Ability to research and validate security vulnerabilities and propose solutions for remediation or mitigation
- Up-to-date knowledge of market trends, emerging technologies, and best practices in cloud security
- Excellent analytical, problem-solving, and communication skills to solve significant complex technical problems
- Ability to work independently and collaboratively in a dynamic, fast-paced environment
Bonus Skills
- Relevant certifications (e.g., AWS Certified Solutions Architect, Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP)) are a plus
#LI-RS1 #LI-REMOTE