Logo

Staff Cloud Security Engineer

Moonpay
North America
France
+5 more
Full time
Hybrid

Overview

Department

Engineering

Job type

Full time

Compensation

Salary not specified

Location

North America

Company size

Mature [ 50+ employess ]

Resume Assistance

See how well your resume matches this job role with our AI-powered score. By uploading your resume, you agree to our Terms of Service

Ready to apply?

You're one step away - it takes less than a minute to upload your resume

This role focuses on fortifying MoonPay's cloud infrastructure (GCP and AWS) through security reviews, threat modeling, and automated controls. The engineer will collaborate with teams to integrate security best practices and respond to identified risks.

Requirements

  • Extensive experience in Cloud Security, with deep expertise in GCP and AWS.
  • Strong understanding of Threat Modelling principles and their application to cloud infrastructure and architectural designs.
  • Hands-on experience with cloud security tools and technologies, including DataDog for security monitoring and Terraform for Infrastructure as Code.
  • Proven experience in designing, implementing, and managing cloud security controls and configurations.
  • Experience with Identity and Access Management (IAM) in cloud environments, including the implementation and management of Just-in-Time (JIT) access solutions.
  • Proven ability to establish and manage incident response programs specifically for cloud environments.
  • Proficiency in scripting or programming languages relevant to cloud automation and security (e.g., Python, Go, or similar) is a plus.
  • Comfortable explaining technical security concepts, vulnerabilities, and effective mitigations to diverse audiences
  • Self-motivated, can work independently and effectively in a remote setting while maintaining a team-focused mindset.
  • Highly skilled in documenting security processes and configurations and effectively sharing knowledge with other teams
  • Background experience includes working in a disruptive technology environment, ideally within FinTech, SaaS, or Crypto.
  • Relevant security certifications (e.g., GCP Professional Cloud Security Engineer, AWS Certified Security - Specialty, CISSP, CISM) are a plus but not required.
  • Good understanding of cryptography and its applications in cloud security.
  • Contribute to the security community (e.g., open source projects, conference talks, CTFs)

    • Responsibilities

  • Perform Threat Modelling of architectural infrastructure changes and new cloud infrastructure and Kubernetes deployments in GCP and AWS.
  • Design, implement, and manage robust security controls and configurations for our GCP and AWS environments.
  • Develop and maintain secure Infrastructure as Code (IaC) using Terraform and tools
  • Implement, manage, and enhance Cloud Security monitoring using DataDog, including alert configuration, response procedures and not just rely on out of box (OOTB) rules
  • Implement and manage Just-in-Time (JIT) access solutions for elevated privilege access to cloud resources.
  • Establish and manage the cloud incident management process and program, including leading incident response activities for cloud security events.
  • Collaborate with infrastructure and development teams to integrate cloud security best practices throughout the infrastructure lifecycle.
  • Research and evaluate emerging cloud security threats and vulnerabilities, and develop effective mitigation strategies
  • Develop and deliver cloud security training and awareness programs to engineering and relevant teams.
  • Contribute to the development and maintenance of cloud security standards, policies, and documentation, ensuring they are up-to-date.
  • Manage the future of our cloud security posture, driving continuous improvement and strategic initiatives
  • Accurately document cloud security configurations, processes, and knowledge, and effectively disseminate this information to other teams.
  • Conduct vulnerability assessments and drive remediation for cloud infrastructure.
  • Support requirements and evidence requested from auditors, compliance and regulators

    • Benefits

  • Equity package
  • Unlimited holidays
  • Paid parental leave
  • Annual training budget
  • Home office setup allowance
  • Monthly budget to spend on our products
  • Working in a disruptive and fast-growing industry where the possibilities are endless
  • Freedom, autonomy and responsibility
    • Company
    About
    Academy
    Pricing
    Partnerships
    Legal
    Terms
    Privacy
    Cookies
    Contact
    © All rights reserved.