Senior Cloud Security Engineer (LATAM)

This is a remote position.

• Participate in the implementation and day-to-day operation of CNAPP solutions (Wiz) across Azure and select AWS environments including policy configuration tuning and alert triage.
  
• Harden cloud environments through identity and access controls Azure Policies network segmentation and cloud-native security tooling.
  
• Develop and maintain secure IaC and DevSecOps practicesintegrating security into CI/CD pipelines (Terraform GitHub Actions etc.) artifact signing SBOMs/attestations
  
• Help translate frameworks such as FedRAMP NIST CIS and PBMM into technical controls and automated evidence collection.
  
• Contribute to policy-as-code patterns and reusable Terraform modules to prevent misconfigurations before deployment.
  
• Work closely with product engineering and platform teams to apply security best practices during design and implementation phases.
  
• Communicate findings risks and remediation priorities clearly to technical peers and team leads.
  
• Operate proactively and independently - identifying gaps and driving improvements without waiting to be directed.
  
• Collaborate with SecOps and AppSec teams to triage findings evaluate risk and support remediation across vulnerabilities identities data and workloads.
  
• Track metrics and contribute to posture improvement initiatives.
  

What Were Looking For

Required Qualifications

• Bachelors degree in Computer Science Engineering Cybersecurity or equivalent experience.
  
• 6 years in security engineering with solid hands-on experience in cloud security (preferably in SaaS or technology companies).
  
• Hands-on experience with:
  
  • CNAPP platforms (Wiz or similar) including configuration policy tuning and basic automation.
    
  • Microsoft Defender for Cloud and Azure security services (Entra ID RBAC Key Vault networking monitoring).
    
  • Multi-cloud environments (Azure and AWS).
    
  • DevSecOps practices including pre-merge security checks image scanning artifact signing SBOM/attestations.
    
  • IaC using Terraform (modules policy-as-code drift management).
    
  • Kubernetes/containers (AKS/EKS) image signing runtime protection and registry security.
    
  • Security scripting and automation using Python or PowerShell.
    
• Familiarity with compliance frameworks such as FedRAMP CIS NIST ISO 27001 or SOC 2.
  
• Proactive self-sufficient working style - comfortable taking ownership and driving tasks to completion.
  

Nice to have:

• Azure certifications (AZ-500 SC-200) are a plus.
  
• Industry certifications such as CCSP or CISSP (in progress or completed).
  
• Experience with SAST/DAST tooling or security scanning.
  
• DevOps background with exposure to infrastructure or application pipelines.
  
• Programming experience with Python C# Rego or YAML.
  
• Interest in or exposure to AI/LLM-powered automation.