Senior Cloud Security Engineer

Joining Collibra’s Security team

Collibra is seeking an intelligent and forward-thinking security professional to join the Cloud Security Team which is part of the greater Collibra Security Office (CSO). In this role, you will be responsible for designing, implementing, and operating security controls across our multi-cloud environment spanning AWS, Azure, and GCP. You will work hands-on with cloud-native security tooling, drive architectural decisions, and serve as a technical authority for cloud security across the organization.

As a Senior Cloud Security Engineer, you will drive the secure design and delivery of a world-class cloud-native platform, applying your expertise for all areas of cloud infrastructure.  This is a deeply technical, individual contributor role that requires strong engineering instincts, a bias toward automation, and the ability to operate independently in ambiguous environments. 

Senior Cloud Security Engineers at Collibra are responsible for

• Helping to develop architectural requirements and corresponding engineering processes and technologies to support Collibra’s cloud-native platform


• Design and tune cloud-native detection rules and threat models for AWS GuardDuty, Microsoft Defender for Cloud, and GCP Security Command Center


• Conduct continuous vulnerability assessments of cloud workloads, container images, and serverless functions


• Develop, continuously improve, and ensure compliance with controls built for the cloud-native platform


• Partner with engineering teams to prioritize and drive remediation of cloud security findings


• Plan, organize, and manage multiple responsibilities from various stakeholders and sometimes competing requests to achieve desired objectives


• Maintain and update CloudFlare WAF rules to work with the Collibra product.


• Evaluate and deploy cloud workload protection platforms (CWPP) and container security tooling


• Assist with technical response efforts for cloud security incidents, perform forensic analysis, and contribute to root-cause investigation


• Write production-quality code in Python, Golang/Go, or similar languages to build internal security tooling and automation


• Integrate security tooling into developer workflows to reduce friction while improving security outcomes


• After hours on-call support may occasionally be required

You have

• Minimum of 8 years IT/Security experience across a wide range of disciplines, including a minimum of 2 years experience with Cloud Security or Cloud Engineering in Google Cloud Platform (GCP) and/or Amazon Web Services (AWS).


• Deep hands-on expertise across at least two major cloud platforms (AWS, Azure, GCP), with working knowledge of the third.


• Experience with configuration management and Infrastructure as Code tools like Terraform, Ansible, or similar tools.


• Competency with GNU/Linux, Bash, and Python, Golang/Go or equivalent.


• Hands-on experience with WAF rules such as CloudFlare or equivalent technologies.


• Demonstrated experience with cloud IAM architectures, secrets management, PKI, and encryption at rest/in transit.


• Experience with container security, Kubernetes security hardening, and service mesh technologies.


• Ability to work collaboratively in an organization with stakeholders distributed across various time zones spanning UTC +2 to UTC-8


• Experience with regulatory requirements and/or frameworks (i.e.: FedRAMP, HIPAA, ISO 27001/2, NIST,, SOC2, etc.)


• Advanced presentation and communication skills.


• Desired certifications include: CISSP, CISM, CCSK, or similar.


• A bachelor’s degree or equivalent related working experience is required.


• This position is not eligible for visa sponsorship.


• Because this role supports the US government, it is required that this candidate be a US citizen who resides on US soil.

You are

• An excellent collaborator, teammate, and security practitioner.


• Self-motivated and driven with an ability to execute to completion.


• Able to iterate quickly and independently to deliver solutions to technical problems.


• Eager to learn new technologies and modern methodologies, and are interested in broadening your skills into technologies you haven’t seen before.


• Familiar with security by design principles, and able to educate other technical engineers on how to build security into their processes in a scalable way.


• Agile-minded, optimistic, passionate, and pragmatic about delivering valuable software to customers .


• Accustomed to a fast-paced environment and able to deliver rapidly.

Measures of success

• Within your first month, you will absorb fundamental knowledge about Collibra processes/tools and start building partner team relationships


• Within your third month, you will take ownership of one or more partner team product environments and act as cloud security liaison for vulnerabilities and cloud misconfigurations.  Additionally, you will provide support to monitoring and management of the Collibra WAF


• Within your sixth month, you will drive consistent, repeatable, documented processes for security-driven infrastructure platforms, and improve efficiencies

Compensation for this role

The standard base salary range for this position is $152,000.00 - $190,000.00 per year. This position is not eligible for additional commission-based compensation. Salary offers are based on a combination of factors, including, but not limited to, experience, skills, and location.

In addition to base salary, we offer a competitive total rewards package, including bonus potential, equity for eligible roles, a Flex Fund monthly stipend, pension/401k plans, and more.