Key skills
Cloud infrastructure securityAWSGCPIdentity and access managementSystem hardeningTerraformCDKKubernetesCI/CD securitySecurity automation pipelinesThreat modelingRisk analysisIncident responseGCP Security Engineer certificationAWS certificationsCISSPOSCPAgenticVercelCI/CDCloud Security
About this role
Vercel is an agentic infrastructure company that shapes how the web is built. They are seeking a Security Engineer to join their Cloud Security Engineering team to strengthen the security of their platform by building and improving the controls that protect their infrastructure.
Responsibilities:
- Design and implement scalable security controls across our cloud-native platform
- Harden infrastructure components using infrastructure-as-code, policy enforcement, and service isolation
- Build secure by default infrastructure and code CI/CD pipelines
- Collaborate with platform and infrastructure teams to integrate security best practices into architecture and workflows
- Stay ahead of cloud security trends and adopt cutting-edge technologies to enhance platform resilience
- Conduct threat modeling, risk analysis, and mitigation planning for critical systems
- Drive improvements in monitoring, detection, and incident response at the platform level
- Build, deploy and maintain relevant tooling
Requirements:
- 8+ years of experience in infrastructure or platform security roles
- Deep understanding of secure cloud infrastructure (AWS/GCP), identity and access management, and system hardening
- Proficient with tools like Terraform, CDK, Kubernetes, and CI/CD security
- Skilled at balancing engineering realities with principled security practices
- Proven track record of shipping secure, resilient systems at scale
- Have built or scaled security automation pipelines
- Contributed to open-source security projects or tools
- Hold certifications such as GCP Security Engineer, AWS certifications, CISSP, or OSCP
- Hold a bachelors or masters degree in Cybersecurity or similar disciplines