RemoteLeaf Logo
Log in Sign up

Staff Cloud Security Engineer

1 hour, 12 minutes ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS Azure Envoy GCP Go gRPC HashiCorp Vault Kubernetes Microservices Penetration Testing Python Secrets Management
Apply Now
Temporal

Temporal

Temporal provides an open source durable execution platform that enables developers to create resilient applications capable of maintaining successful operations despite failures, network issues, and other disruptions.

Internet Software & Services
51-250
Founded 2019
$128M raised
View All Jobs 2

Description

  • Collaborate with product and engineering teams to integrate security into the design and architecture of cloud infrastructure across AWS, GCP, Azure, and other clouds.
  • Secure core platform components, including the workflow engine, task queue architecture, and worker execution model.
  • Conduct threat modeling and risk assessments to identify vulnerabilities and attack vectors across the multi-cloud environment.
  • Secure the gRPC communication layer, including mTLS certificate management, service mesh configuration, and API authentication.
  • Manage cloud security posture using tools such as Wiz, including misconfiguration detection, compliance monitoring, and remediation.
  • Translate cloud security standards such as CSA Cloud Controls Matrix and CIS Benchmarks into actionable internal policy.
  • Partner with infrastructure and software engineering teams to enable secure shipping across the organization.
  • Participate in the on-call rotation.
  • Help shape how AI is used responsibly in infrastructure and engineering processes.

Requirements

  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
  • 5+ years of experience in cloud security or a related role.
  • Experience partnering with engineering teams on infrastructure access and security posture.
  • Kubernetes security posture management and auditing experience, including workload hardening, RBAC design, and admission control.
  • Experience with multi-tenant security architecture, including data plane isolation, control plane hardening, and cross-tenant data leakage prevention.
  • Strong opinions on the use of AI in security assessments, threat models, penetration testing, and related workflows.
  • Deep understanding of application architecture and design principles, with the ability to identify vulnerabilities across multiple programming languages.
  • Experience with secrets management at scale, such as HashiCorp Vault or AWS Secrets Manager, and payload encryption patterns such as codec servers.
  • Proficiency in Go and familiarity with Python; Go is Temporal's primary server and SDK language.
  • Strong command of gRPC security, mTLS, and service mesh architectures such as Istio and Envoy.
  • Excellent communication skills and the ability to explain complex security concepts to non-technical stakeholders.
  • Experience with Temporal, Cadence, or similar workflow orchestration platforms, including workflow history, replay semantics, and scheduling internals (nice to have).
  • FedRAMP, SOC 2 Type II, or ISO 27001 experience, especially in cloud-native SaaS environments (nice to have).
  • Experience with open source automation or automation projects (nice to have).
  • Additional expertise in AppSec, CorpSec, or GRC (nice to have).
  • Security conference talks or published research (nice to have).

Benefits

  • Estimated base pay of $225,000 - $275,000, depending on qualifications and location.
  • Eligible to participate in Temporal's equity plan.
  • Unlimited PTO, plus 12 holidays and 2 floating holidays for U.S. employees.
  • 100% employer-paid medical, dental, and vision premiums for U.S. employees.
  • AD&D, short-term disability, long-term disability, and life insurance options.
  • Empower 401(k) plan.
  • Learning and development, professional memberships, lifestyle spending, in-home office setup, WFH meals, and internet stipend perks.
  • Calm app access for mental wellness, plus international employee perks that vary by country.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Inovalon

Senior Staff Security Engineer L7

Inovalon 1K-5K IT Services

Inovalon is hiring a Senior Staff Security Engineer L7 to lead cyber security service delivery for customers while resolving incidents and strengthening security across the environment.

India Full-time Lead Security Engineer Software Engineer
C C# C++ Encryption HIPAA Java JavaScript Linux Network Security Penetration Testing Python Ruby SQL TCP/IP
1 hour, 12 minutes ago
V4C.ai

AWS Security Engineer

V4C.ai Internet Software & Services

V4C.ai is seeking an AWS Security Engineer to secure its AWS cloud infrastructure by designing controls, monitoring vulnerabilities, and responding to security incidents alongside cloud engineering and operations teams.

United States Contract Lead Security Engineer
AWS Bash CloudFormation HIPAA Penetration Testing Python Terraform
1 hour, 42 minutes ago
Binance

SOC Engineer (Incident Response)

Binance 5K-10K Capital Markets

Binance is hiring a SOC Engineer focused on incident response and data loss prevention to protect sensitive data and investigate exfiltration risks across its global crypto and financial platforms.

Taiwan Hong Kong Full-time Mid Level Security Engineer
Blockchain Encryption LLM Network Security Python SIEM SOC
7 hours, 7 minutes ago
Anduril Industries

Technical Security Systems Architecture Manager

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Manager of Technical Security Systems Architecture to design, manage, and improve physical security systems that protect its facilities, assets, and personnel in a defense technology environment.

United States Full-time Lead Network Engineer Security Engineer
$166k-$200k
Cybersecurity TCP/IP
16 hours, 36 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers