Senior Cloud Security Engineer II

Incode is seeking a Senior Cloud Security Engineer II to architect and operationalize cloud security across multi-cloud environments, ensuring resilience and security by default. Incode is the leading provider of world-class identity solutions that is reinventing the way humans authenticate and verify their identities online to power a world of digital trust. Through our revolutionary identity solutions, we are unleashing the business potential of universal industries including finance, government, retail, hospitality, gaming, and more, by reducing fraud and transforming human interactions with data, products, and services.

• •Discover the top security challenges we face and partner with teams across the company to be hands-on in implementing your security recommendations.
• •Build security controls that detect, prevent, and correct cloud vulnerabilities in our very complex, multi-cloud, hybrid and private cloud environment.
• •Architect and design infrastructure to support the security team’s mission and ensure well-architected fundamentals (logging, identity and access controls, etc).
• •Build, deploy, and manage production security tools and services to monitor networks, endpoints, and cloud workloads.
• •Build, maintain and evolve a reliable and low-touch infrastructure using technologies such as Terraform, Kubernetes, and immutable images.
• •Facilitate the security baked into our cloud infrastructure for our applications and customer data.
• •Contribute changes to production security infrastructure and platforms (e.g., configure GuardDuty or AWS Config, Kubernetes, VPNs, Secrets Manager, etc).
• •Help your peer engineers grow their own security reasoning and knowledge.

• •Mission with Meaning - Shape how billions of people prove identity - safely, simply, and ethically.
• •Rocket-Ship Growth - Join at an inflection point where your strategies will compound in value for years.
• •Elite Team & Backing - Work a truly global with top engineers, designers, and investors who share your ambition to dominate a category.
• •Ownership & Autonomy - Operate like a founder with the resources of a unicorn.
• •Global Impact - Every program you launch will reverberate across industries and continents.

• •Flexible Working Hours & Workplace.
• •Open Vacation Policy.

• •5+ years experience deploying and securing services on public cloud infrastructure.
• •Detailed understanding of cloud and network security.
• •Detailed understanding of Kubernetes components and cloud-native security.
• •Strong Linux expertise - you live and breathe Linux environments.
• •Fluency in one or more programming or scripting languages.
• •Experience building, deploying, and customizing security tools to address threats and lower risk: CSPM, vulnerability scanners, static analyzers, web application firewalls, IDS/IPS, endpoint security monitoring, etc.
• •Knowledge of networking and web protocols (TCP/IP, HTTP, TLS, REST), and the ability to analyze traffic to find anomalies.
• •Depth and experience in modern cloud technology components and deployment patterns - virtual machines, containers, Kubernetes (including building and securing clusters from scratch), serverless, and infrastructure as code.
• •Depth and experience with at least one common cloud service provider: AWS, GCP, Azure.
• •Understanding of security weaknesses, exploits, attacks and mitigations.
• •Experience with most of the following: AWS security tools (GuardDuty, AWS Config, CloudTrail), Terraform, Kubernetes, Containers, Open Policy Agent, Secrets Management, SIEM.
• •Excellent collaborative skills.
• •Outstanding written and verbal communication.