Cloud Security Engineer

Cloud Security Engineer

At HashiCorp, an IBM company, we're on a mission to enable organizations to provision, secure, connect, and run any infrastructure for any application. Our security team plays a critical role in this mission by ensuring the security and integrity of our cloud environments and services. We are looking for a Cloud Security Engineer to help scale our cloud security posture management and infrastructure security functions, providing innovative solutions across HashiCorp's suite of industry-leading products delivered as cloud, self-managed, and community offerings. Security at HashiCorp is a global team, and we value individuals who thrive with autonomy while collaborating effectively across engineering, product, and security teams.

Responsibilities:

• Design and implement solutions that strengthen the security posture of HashiCorp's cloud environments (AWS, Azure, GCP and more).
• Monitor and respond to cloud security threats and vulnerabilities, develop mitigations, and communicate associated risks to stakeholders.
• Serve as a subject matter expert (SME) on cloud security best practices, including IAM, network security, container security, and workload protection.
• Contribute to the development and maintenance of security tooling and automation for cloud environments, including CI/CD integrations and vulnerability management systems.
• Research emerging cloud attack vectors and techniques, helping identify potential threats to HashiCorp's infrastructure and services.
• Collaborate with cross-functional teams to implement security standards and participate in architecture reviews for cloud deployments.

Required technical and professional expertise:

• Good understanding of cloud security principles and experience with AWS, Azure, or GCP.
• Hands-on experience with infrastructure-as-code security (Terraform, etc.).
• Knowledge of container security and Kubernetes hardening.
• Experience with vulnerability management and remediation in cloud environments.
• Good written and verbal communication skills, with the ability to influence and educate engineering teams.

Preferred technical and professional experience:

• Experience with Cloud Security Posture Management (CSPM) tools; Wiz experience is a plus.
• Familiarity with other CSPM or CNAPP solutions (e.g., Prisma Cloud, Lacework, Orca).
• Knowledge of security automation and scripting (Python, Go).
• Exposure to identity and access management (IAM) design and zero-trust principles.
• Understanding of compliance frameworks (SOC 2, ISO 27001, FedRAMP) and cloud governance.

IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.