Senior Cloud Security Engineer

Pax8 is redefining how cloud technology is bought, sold, and secured. The Senior Cloud Security Engineer will own and shape the security posture of Pax8’s cloud and platform ecosystem, operating at the intersection of security, engineering, and emerging AI-driven technologies.

Responsibilities:

• Establish and evolve cloud and platform security hardening standards across AWS, Kubernetes, CI/CD, and SaaS platforms
• Translate infrastructure architecture into clear, actionable security expectations — and validate they work in practice
• Define and enforce least-privilege access models across cloud and Kubernetes identity boundaries
• Secure CI/CD systems including federated identity, secrets handling, and environment protections
• Validate network security controls and segmentation across the platform estate
• Track and report platform security posture using meaningful risk-based metrics
• Author reference architectures and decision records that engineering teams can operationalize
• Partner closely with DevOps, SRE, and Engineering as the primary platform security authority

Requirements:

• Substantial experience in cloud, infrastructure, or platform security within modern cloud-native environments
• Extensive hands-on AWS expertise across identity, compute, networking, data, and logging services
• Proven operational Kubernetes security knowledge including access controls, network policies, and workload isolation
• Demonstrated ability securing CI/CD pipelines and cloud-native delivery workflows
• Strong Infrastructure-as-Code fluency, particularly Terraform, with the ability to review Helm charts
• Experience producing security architectures and design artifacts that teams actively use
• Comfort operating independently, influencing outcomes without formal authority, and partnering deeply with engineers
• Curiosity and exposure to emerging AI and agentic workload security patterns