Senior Cloud Security Engineer

• Secure Aurora’s cloud environment in the areas of but not limited to: • Create automation to solve security problems at the root • Design, build, and configure security infrastructure clouds such as like AWS, Azure, or GCP • Manage the security posture of workloads deployed on Kubernetes environments

We’re searching for a Senior Cloud Security Engineer . You will be part of the Cloud Security engineering team dedicated to building resilient, automated security systems at scale. Cloud security collaborates with infrastructure and application teams closely. The areas we cover are infrastructure security, workload security, and CI/CD hardening. Our team is dedicated to building resilient, automated systems at scale. We take a hybrid approach to our toolkit: we utilize the best of open-source (OPA, Trivy, Spire) and COTS products, while still writing custom code to automate workflows and harden our global digital integrity. You’ll help us strike the perfect balance between leveraging existing solutions and building custom ones from the ground up. • 5+ years of progressive experience in security engineering • Understanding of fundamental security concepts such as Authentication, Authorization, Zero-Trust, and their application to cloud native infrastructure and applications. • Hands-on experience in securing cloud and Kubernetes environments. Experience with Kubernetes admission controllers, vulnerability management, supply-chain security, network security, and use of mTLS and PKI to secure infrastructure. • Ability to design and implement security controls for Kubernetes, including strong knowledge of authorization models, admission controllers, and security best practices. • Understanding of modern Identity and Access Management (IAM) standards and technologies such as OAuth2/OIDC, SAML. • Proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation. • Experience writing and using Terraform. • Deep fundamental understanding of enterprise-level network security, operating system (Linux), Kubernetes, CI/CD, and application security principles. • Familiarity with compliance frameworks (e.g., SOX, SOC 2, ISO 27001). • Familiarity with machine identity frameworks like SPIFFE/SPIRE, mTLS or equivalent. The base salary range for this position is $146,000 - $211,000 per year. Aurora’s pay ranges are determined by role, level, and location. Within the range, the successful candidate’s starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits. Working at Aurora At Aurora, we bring together extraordinarily talented and experienced people united by the strength of our values. We operate with integrity, set outrageous goals, and build a culture where we win together — all without any jerks. We believe in-person work increases collaboration, empathy and our ability to lead effectively. As a result, we operate in a hybrid work environment where Aurorans are in office at least 3 days per week. Our Careers page provides insight into what it is like to work at Aurora, and you can find all the latest updates in our Newsroom .