Senior SecOps Engineer at Cloudinary

, , Israel -

Full Time

Start Date

Immediate

Expiry Date

20 Dec, 25

Salary

0.0

Posted On

21 Sep, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Security Operations, Cloud Security, Incident Response, AWS, Kubernetes, Python, Go, SIEM, EDR, CSPM, CI/CD Security, IaC, Networking, Linux, DevOps, Risk Communication

Industry

technology;Information and Internet

Description

Cloudinary is looking for a Senior SecOps Engineer to be our eyes and ears on security—end to end. You’ll be embedded in the DevOps team and partner with our existing SecOps engineer to secure massively scalable, global production systems that power tens of thousands of websites and apps, while also tackling organizational security across identity, endpoints, SaaS, and risk. This is a hands‑on role with broad ownership and real impact across R&D, Production, and the business. \n What You’ll Do Detect, protect, and respond (hands‑on) Own day‑to‑day security operations for cloud and Kubernetes workloads (threat detection, alert triage, incident response, forensics, and post‑incident learning). Build and tune detections and automations (SOAR/runbooks, detection‑as‑code, Sigma/queries) to reduce MTTA/MTTR and eliminate noisy alerts. Secure our delivery pipelines & runtime Harden CI/CD and software supply chain (secrets, SBOMs, artifact signing, SLSA/Cosign), and drive “secure by default” patterns in build/deploy. Lead cloud/K8s/serverless hardening (IaC reviews, policy‑as‑code, admission controls, least privilege, network segmentation) Raise the bar across the organization (beyond prod) Partner with IT/SRE to evolve identity & access (SSO/MFA/JIT/JEA), endpoint/EDR posture, email & SaaS security, and third‑party/vendor risk. Run vuln management end‑to‑end: scanning, prioritization, remediation SLAs, and executive reporting. Contribute to security governance (policies, standards, tabletop exercises, BCP/DR inputs) and support compliance efforts (e.g., SOC 2/ISO 27001). Influence, automate, and measure Build security tooling and integrations (preferably Python or Go) that engineers love to use. Define metrics/KPIs (coverage, drift, exposure, response times) and regularly communicate risk & progress to engineering and leadership. Mentor engineers on secure design and champion a positive, enablement‑first security culture. What You’ll Bring 5+ years in Security Operations/Cloud Security/Blue Team roles, with deep, hands‑on experience in AWS (IAM/GuardDuty/CloudTrail/CloudWatch) and Kubernetes/containers. Strong incident response skills across detection, investigation, containment, and recovery especially in complex cloud-native environments. Proficiency building security automations and tools in Python or Go; experience with SOAR and API‑driven workflows. Practical expertise with SIEM/log analytics (e.g., ELK/OpenSearch, Splunk), EDR, CSPM/CNAPP, and secrets management (e.g., Vault). Solid grasp of CI/CD security, supply‑chain risks (SAST/DAST/IAST, dependency scanning, artifact signing), and IaC (Terraform) security reviews. Networking & Linux fundamentals; proven ability to partner with DevOps/SRE/R&D and to communicate risk clearly to non‑security stakeholders. Willingness to participate in a shared on‑call rotation for security incidents. \n

Responsibilities

The Senior SecOps Engineer will manage day-to-day security operations for cloud and Kubernetes workloads, including threat detection and incident response. They will also partner with IT/SRE to enhance organizational security across various domains.