Cloud Security Engineer

If your ambition is matched by your work ethic—and you're hungry for a place where growth, impact, and ownership are the norm—YipitData might be the opportunity you’ve been waiting for. ## As Our Cloud Security Engineer You Will:

• Cloud Infrastructure Security (AWS Focus)

• Design, implement, and maintain security controls across our AWS environment

• Manage and tune AWS-native security tooling (GuardDuty, Security Hub, CloudTrail, Inspector, etc)

• Develop and enforce infrastructure-as-code (IaC) security policies using tools such as Terraform

• Conduct periodic reviews of AWS account architecture, SCPs, and organizational unit (OU) structures to ensure least-privilege and segmentation best practices

• Collaborate with Platform Engineering teams to shift left our security posture by embedding security into CI/CD pipelines

• Monitor, investigate, and respond to cloud security alerts and incidents within AWS environments

• Detection, Monitoring & Incident Response

• Build and maintain cloud-focused detection rules, alerts, and dashboards within Datadog Security (Cloud SIEM, Cloud Security Management, Application Security)

• Develop and operationalize Datadog detection rules, log pipelines, and security signals in collaboration with the SOC team to provide real-time visibility across AWS infrastructure, application logs, and cloud workloads

• Correlate findings from Datadog Security with alerts from Obsidian Security and AWS-native tooling to provide a unified view of risk across cloud and SaaS environments

• Develop automated response playbooks for common cloud and SaaS security events

• Participate in incident response activities, including investigation, containment, and post-incident review for cloud and SaaS-related security events

• Conduct threat modeling exercises for cloud architectures and SaaS integrations

• Compliance & Governance

• Support compliance initiatives (e.g., SOC 2, or other frameworks as applicable) by implementing and evidencing technical controls in AWS and SaaS environments

• Maintain security documentation including architecture diagrams, runbooks, and policy documents

• Contribute to internal security audits and third-party assessment processes

• Track and remediate findings from vulnerability scans, penetration tests, and cloud security assessments

You Are Likely To Succeed If:

• 5+ years of experience in information security, cloud security, or security engineering roles
• 3+ years of hands-on experience with AWS security services and architecture (IAM, VPC security, CloudTrail, GuardDuty, etc.)
• Strong understanding of cloud-native security principles including least privilege, defense in depth, zero trust, and d responsibility models
• Hands-on experience with Datadog Security or similar cloud-native SIEM/observability platforms (Cloud SIEM, security signal management, log pipeline configuration, custom detection rules)
• Proficiency with Infrastructure-as-Code (Terraform, CloudFormation, or CDK) and policy-as-code frameworks
• Working knowledge of container and serverless security
• Solid scripting/automation skills in Python, Bash, or similar languages
• Familiarity with common security frameworks and standards (NIST CSF, CIS Benchmarks, SOC 2, ISO 27001)

Preferred Qualifications:

• CISSP, CCSP, and / or AWS Certified Security – Specialty

What We Offer:

• Our compensation package includes comprehensive benefits, perks, and a competitive salary:

• We care about your personal life, and we mean it. We offer flexible work hours, flexible vacation, a generous 401K match, parental leave, team events, wellness budget, learning reimbursement, and more! - Your growth at YipitData is determined by the impact that you are making, not by tenure, unnecessary facetime, or office politics. Everyone at YipitData is empowered to learn, self-improve, and master their skills in an environment focused on ownership, respect, and trust. See more on our high-impact, high-opportunity work environment above! - The annual on-target earnings for this position is anticipated to be up to $185K - $215K**. The final offer may be determined by a number of factors, including, but not limited to, the applicant's experience, knowledge, skills, abilities, as well as internal team benchmarks.**The compensation package also includes equity.

**This role may be performed fully remotely within the United States.*Please note that our US headquarters are located in NYC. We also have office hubs in Austin, Miami, Los Angeles (CA), and Cupertino (CA). We are proud to be an equal-opportunity employer.