Senior Security Engineer

Business Area: IT Seniority Level: Mid-Senior level Job Description:  At Cloudera, we empower people to transform complex data into clear and actionable insights. With as much data under management as the hyperscalers, we're the preferred data partner for the top companies in almost every industry.  Powered by the relentless innovation of the open source community, Cloudera advances digital transformation for the world’s largest enterprises. We are seeking a technically proficient and proactive Senior Security Engineer to manage and enhance the security of our hybrid IT environment. This role focuses on the hands-on implementation, operation, and continuous improvement of security controls across on-premises data centers and cloud platforms (AWS, Azure, GCP), with an emphasis on identifying, prioritizing, and reducing security risk. You will serve as a key technical resource, owning security initiatives from assessment through remediation and collaborating closely with IT Operations and Product teams to ensure our infrastructure remains resilient. As a Senior Security Engineer, you will: Security Implementation & Optimization: Deploy and tune security controls across on-premises and cloud environments (IaaS, PaaS, SaaS). Ensure that security architectures designed by leadership are effectively integrated. Vulnerability Management: Identify, assess, and track security vulnerabilities across infrastructure, cloud environments, endpoints, and applications. Perform risk-based analysis to prioritize remediation, partner with IT and Engineering teams to drive fixes, and validate remediation effectiveness. Cloud Security Operations: Maintain and monitor security configurations across cloud providers. This includes managing cloud security groups, IAM roles, and monitoring containerized workloads and serverless functions. Infrastructure Defense: Manage and troubleshoot on-premises security controls, including firewalls, endpoint protection (EDR), and virtualization security. Identity & Access Management (IAM): Administer and enforce IAM policies, including SSO integration, MFA rollout, and the management of Privileged Access Management (PAM) tools. Incident Response: Serve as a core technical responder during security incidents, assisting with investigation, containment, and documentation of post-incident findings. Automation & Tooling: Maintain security tooling and develop scripts (e.g., Python, Terraform) to automate repetitive security tasks and improve operational efficiency. Compliance Support: Assist in gathering evidence for audits and ensuring our controls meet industry standards like ISO 27001, SOC 2, or PCI DSS. We are excited about you if you have: Education: Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent practical experience). Experience: 4–6 years of experience in cybersecurity engineering or infrastructure security. Cloud Proficiency: Hands-on experience configuring security settings within at least one major cloud provider (AWS, Azure, or GCP). Technical Depth: Solid understanding of network protocols, firewalls, and endpoint security technologies. Scripting: Ability to use scripting languages (e.g., Python, PowerShell) or Infrastructure as Code (Terraform, CloudFormation) to manage security configurations. IAM Knowledge: Practical experience managing identity providers (e.g., Okta, Azure AD) and RBAC models. Communication: Strong ability to document technical processes and communicate security risks to peers and cross-functional partners. Certifications: Certifications like CompTIA Security+, GIAC (GSEC/GCIH), or Associate-level Cloud Security certifications (e.g., AWS Certified Security Specialty) are a plus. This is a high-impact role where your work directly protects our users and data every day. We offer a fast-paced environment that prioritizes professional development, giving you the tools and the time to master new security technologies.   This role is not eligible for immigration sponsorship. What you can expect from us: Generous PTO Policy  Support work life balance with Unplugged Days Flexible WFH Policy  Mental & Physical Wellness programs  Phone and Internet Reimbursement program  Access to Continued Career Development  Comprehensive Benefits and Competitive Packages  Paid Volunteer Time Employee Resource Groups EEO/VEVRAA #LI-REMOTE #LI-SZ1