Skip to content

Senior Security Engineer, Platform Security

As a Senior Platform Security Engineer, you will secure Block's cloud, compute, and network infrastructure, architecting and evolving cloud security guardrails, building automation for security issues, and owning the cloud security exception lifecycle.

185k – 327kSan Francisco, CASecurity EngineeringHybrid5+ YOE

About the role

The Role

The Platform Security team is responsible for securing Block's cloud, compute, and network infrastructure across multiple business units including Square, Cash, and Afterpay.

We discover, track, and enable the business to remediate the most critical security risks across Block's cloud ecosystems (AWS and GCP). We drive the creation of cloud security policy and best practices, measure and aggregate deviations from these policies, and develop capabilities to estimate security risk based on cloud signals and business context. This work drives Block's cloud security strategy and is the lens through which Block measures progress of our cloud security posture over time.

We believe that the secure option should be the easiest option for our users. We're looking for a strong Senior Platform Security Engineer with a deep understanding of securing cloud infrastructure and services at scale to help us execute on this vision.

You Will

  • Architect and evolve cloud security guardrails. Design and implement SCPs, GCP org policies, and IAM controls that shape how Block uses cloud infrastructure for years to come.
  • Build automation to discover, measure, and contextualize security issues. Develop integrations with CSPM/DSPM tools and internal platforms to surface and prioritize findings.
  • Own the cloud security exception lifecycle. Build and maintain the tooling and processes that allow teams to request, review, and track security exceptions at scale
  • Partner with platform teams to deliver solutions that permanently eliminate entire categories of cloud security risk.
  • Deliver key cloud security assurance functions. Balance the need to remediate critical misconfigurations and sensitive data exposures with being responsible stewards of our developers' time.
  • Develop risk-based prioritization. Build data pipelines and dashboards that aggregate security signals and help leadership understand posture trends.
  • Respond to and triage cloud security alerts. Support on-call rotations, investigate findings, and help engineers resolve issues quickly.
  • Produce quality software that stands the test of time and scales across Block's multi-cloud footprint.
  • Think, build and iterate in an AI-augmented environment.

You Have

  • 5+ years of experience as a software or security engineer
  • 4+ years of experience securing infrastructure running on AWS and/or GCP at scale.
  • Deep experience with Infrastructure-as-Code. Terraform (including securing Terraform pipelines), SCPs, GCP org policies, and understanding of best practices and pitfalls when deploying guardrails at organizational scale.
  • Experience with cloud security posture management (CSPM) tools such as Wiz, and familiarity with DSPM concepts (sensitive data discovery, classification, and remediation).
  • Strong understanding of IAM. AWS IAM policies, roles, SCPs, permission boundaries; GCP IAM, service accounts, and org-level constraints.
  • Experience maturing the cloud security posture of large, complex, multi-account/multi-project environments.
  • Demonstrated ability to successfully deliver complex, multi-faceted projects from concept to launch.
  • Demonstrated fluency with AI-assisted development tools (e.g., Claude Code, Cursor, GitHub Copilot, or similar agentic coding tools) in real production work

Bonus If You Have

  • Experience with Kubernetes security (pod security policies, network policies) in environments like EKS or GKE.
  • Familiarity with BI and data exploration tools like Looker and Snowflake for building security metrics and dashboards.
  • Experience building or operating security exception/risk acceptance workflows at scale.
  • Familiarity with cloud networking and network segmentation strategies.
  • Ability to work well cross-functionally and communicate with audiences who may not have a security or engineering background.
  • Experience supporting multi-business-unit organizations with varying compliance and regulatory requirements.

Benefits

Every benefit we offer is designed with one goal: empowering you to do the best work of your career while building the life you want. Remote work, medical insurance, flexible time off, retirement savings plans, and modern family planning are just some of our offering. Check out our other benefits at Block.

Skills

AWSGCPTerraformWizIAMKubernetesLookerSnowflakeAi-Assisted Development Tools

Manager, Security Operations

Lead Figma's security operations program, owning monitoring, incident response, SIEM/SOAR automation, and threat intelligence. Requires 7+ years in security operations or incident response with deep SIEM/SOAR expertise.

185k – 296kSan Francisco, CA +1Security EngineeringRemote7+ YOEIAMDlp

Senior Software Engineer, AI Tools and Security

Senior Software Engineer leads technical direction of secure AI infrastructure gateway, building high-throughput services and APIs for developer tools. Requires 6+ years backend experience, primarily in Go, with strong security and product focus.

185k – 261kSeattle, WASecurity EngineeringRemote6+ YOEGoMcp

Senior Software Engineer

Senior Software Engineer on the Core Cryptography team building and operating Tier-0 cryptographic infrastructure including MPC systems that secure 99% of customer assets. Requires 5+ years building highly available distributed systems and experience with applied cryptography, KMS/HSMs, and systems languages (Golang-heavy).

186k – 219kUnited StatesSecurity EngineeringRemote5+ YOEGoC++

Senior Application Security Engineer

Builds scalable platform-level security controls and enforcement layers for distributed systems at Datadog. Requires strong software engineering background in Go/Python, experience with security systems like auth/authz, and designing secure infrastructure used by engineering teams.

187k – 240kNew York, NYSecurity EngineeringHybridGoMtls

Senior Cloud Security Engineer - K8s

Senior Cloud Security Engineer specializes in securing Kubernetes and service mesh infrastructure in multi-cloud environments. Implements solutions to systemic risks, enables secure development, and influences product direction with hands-on coding in Go/Python/Rust.

187k – 240kNew York, NYSecurity EngineeringHybridGoAWS