Skip to content
Sigma

Senior Security Engineer

New York, NYOnsite6+ YOE
Summary

Senior Security Engineer focused on cloud and data security for a fast-growing SaaS company. Requires 6+ years experience in cloud security, IAM, and hands-on expertise across AWS, GCP, or Azure.

About the role

What You’ll Do

  • Partner with infrastructure and engineering teams to embed security into development workflows and promote secure-by-default patterns
  • Design, implement, and continuously improve Sigma Cloud Security in all environments - AWS, GCP, Azure
  • Conduct cloud threat modeling and security risk assessments for new projects, integrations, and SaaS platforms
  • Develop and enforce identity and access management (IAM) best practices, including zero trust models and privileged access controls across IaaS and SaaS environments
  • Deploy and manage cloud-native security services (CSPM, CNAPP, DSPM, SIEM, DLP, WAF, Kubernetes, container security)
  • Review and apply zero trust principles through strict network segmentation, authentication, and authorization across cloud environments
  • Engineer and support solutions for data security, encryption, key management, and secrets management
  • Build infrastructure-as-code (IaC) security controls using Terraform, CloudFormation, or similar tools
  • Partner with DevOps/Engineering to embed DevSecOps practices into CI/CD pipelines and application development
  • Proactively identify and remediate misconfigurations and vulnerabilities across cloud workloads
  • Develop sophisticated signature and rules for Cloud security and Automate detection and response workflows for cloud security incidents
  • Use AI securely and effectively to make the team efficient and scale security practices
  • Stay ahead of evolving threats – leverage intelligence, attack simulation, and red/blue team learnings to refine defenses

What We’re Looking For

  • Bachelor's degree in Computer Science, Information Security, or a related field. Master's in Cyber Security is a plus
  • Deep expertise in AWS, GCP, or Azure security services and architectures
  • Proven ability to produce high-quality results in a fast-paced SaaS environment or similar large scale environment
  • 6+ years of hands-on experience in fields like Cloud Security, Data Security and IAM
  • Advanced understanding of Security Engineering in SaaS and AI-driven environments
  • Strong proficiency in scripting languages (e.g., Python, Go, PowerShell) for automation, data analysis, and security tooling development
  • Strong understanding with container security, orchestration security, and authentication/authorization
  • Hands-on experience with Kubernetes, containers, and serverless security
  • Deep Hands-on knowledge on security platforms like Wiz, Cloudflare, Netskope
  • Relevant certifications such as CISSP, CCSP, or AWS Security Specialty

Benefits

  • Equity
  • Generous health benefits
  • Flexible time off policy
  • Paid bonding time for all new parents
  • Traditional and Roth 401k
  • Commuter and FSA benefits
  • Lunch Program
  • Dog friendly office
Skills
AWSGCPAzurePythonGoPowerShellKubernetesTerraformCloudFormationWizCloudflareNetskopeIAMZero TrustCSPM
Apply