# Cloud Security Engineer
**Company:** [Applied Intuition](https://hotfix.jobs/companies/applied-intuition)
**Location:** Sunnyvale, CA
**Salary:** $125K-$160K
**Experience:** 5+ years
**Skills:** Kubernetes, AWS, Terraform, Wiz, IAM, RBAC, Docker, CloudFormation, Aws Cdk, Azure, GCP, Oci, Podman
**Posted:** 2026-04-21
> Secures multi-cloud infrastructure (AWS, Azure, GCP, OCI) with emphasis on Kubernetes hardening, IAM enforcement, CSPM using Wiz, and IaC security. Requires 5+ years experience, deep AWS and Kubernetes security expertise.
## Job Description
## Responsibilities

- Securely deploy and maintain infrastructure across multi-cloud environments (AWS, Azure, GCP, OCI), establishing cloud-specific guardrails to prevent insecure deployments and configurations.
- Implement and enforce security best practices for Cloud native Kubernetes clusters, including granular RBAC, network policies, and admission controllers.
- Develop, implement, and enforce IAM policies and procedures across all systems, managing user identities and enforcing least privilege.
- Ensure security of container images, registries, and runtime environments using Docker, Podman, and container scanning solutions.
- Manage infrastructure and security policies through IaC tools such as **Terraform**, **CloudFormation**, or **AWS CDK**.
- Maintain CSPM tools such as **Wiz** to detect and remediate misconfigurations and compliance drifts.
- Automate compliance checks and generate audit evidence across multi-cloud environments.
- Monitor and protect running applications and containers from runtime threats.

## Requirements

- **5+ years** of industry experience in software engineering or security engineering, focusing on secure, production-grade cloud systems.
- Extensive experience with **Kubernetes** security (securing workloads, RBAC, cloud-native secret management).
- Deep operational security experience with **AWS** (mandatory), preferred experience with **Azure**, **GCP**, or **OCI**.
- Proficiency in IaC tools: **Terraform**, **CloudFormation**, or **AWS CDK**.
- Hands-on expertise with CSPM platforms like **Wiz**.
- Strong background in IAM and least-privilege architectures across multi-cloud and on-premises environments.
- Experience with container security, image scanning, and runtime protection tools.

## Nice to Haves

- Certifications: **AWS Certified Security – Specialty**, **CKS**, **CKA**.
- Proficiency in **Go/Golang**, **Python**, or **C++** for security automation.
- Experience automating compliance frameworks and audit evidence generation.
- Experience in air-gapped or constrained on-premises environments.

## Compensation

**Base salary range**: $125,000 - $160,000 USD annually, plus equity and benefits.
**Apply:** https://hotfix.jobs/jobs/cloud-security-engineer-at-applied-intuition-ee2696b4-a225-461e-a9de-7e16b1547cd7
**Canonical:** https://hotfix.jobs/jobs/cloud-security-engineer-at-applied-intuition-ee2696b4-a225-461e-a9de-7e16b1547cd7