{"version":"0.1","company":{"name":"YubHub","url":"https://yubhub.co","jobsUrl":"https://yubhub.co/jobs/skill/aws-security-specialty"},"x-facet":{"type":"skill","slug":"aws-security-specialty","display":"Aws Security Specialty","count":2},"x-feed-size-limit":100,"x-feed-sort":"enriched_at desc","x-feed-notice":"This feed contains at most 100 jobs (the most recently enriched). For the full corpus, use the paginated /stats/by-facet endpoint or /search.","x-generator":"yubhub-xml-generator","x-rights":"Free to redistribute with attribution: \"Data by YubHub (https://yubhub.co)\"","x-schema":"Each entry in `jobs` follows https://schema.org/JobPosting. YubHub-native raw fields carry `x-` prefix.","jobs":[{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_bdf9dc88-fbe"},"title":"Infrastructure Security Engineer","description":"<p>We are seeking a talented and motivated Cloud/Infrastructure Security Engineer to join our security team.</p>\n<p>In this role, you will design, implement, and maintain secure cloud infrastructure and ensure the integrity of our cloud-native applications.</p>\n<p>Responsibilities:</p>\n<ul>\n<li>Design and implement secure cloud architectures across multiple cloud platforms (e.g., AWS, GCP, Azure)</li>\n<li>Develop and maintain Infrastructure as Code (IaC) templates with embedded security controls</li>\n<li>Conduct regular security assessments and audits of cloud infrastructure and services</li>\n<li>Implement and manage cloud security tools and services (e.g., CSPM, CWPP, CASB)</li>\n<li>Collaborate with development teams to ensure security best practices are integrated into CI/CD pipelines</li>\n<li>Monitor and respond to security events and incidents in cloud environments</li>\n<li>Develop and maintain cloud security policies, standards, and procedures</li>\n<li>Stay current with emerging cloud security threats and mitigation strategies</li>\n</ul>\n<p>Basic Qualifications:</p>\n<ul>\n<li>Bachelor&#39;s degree in Computer Science, Cybersecurity, or a related field</li>\n<li>3-5 years of experience in cloud security or related roles</li>\n<li>Strong understanding of cloud security principles, compliance frameworks, and best practices</li>\n<li>Proficiency in at least one cloud platform (AWS, GCP, or Azure) and associated security services</li>\n<li>Experience with Infrastructure as Code tools (e.g., Terraform, CloudFormation)</li>\n<li>Familiarity with containerization technologies and their security implications</li>\n<li>Knowledge of network security concepts and protocols</li>\n<li>Experience with scripting languages (e.g., Python, Bash) for automation and tool development</li>\n</ul>\n<p>Preferred Skills and Experience:</p>\n<ul>\n<li>Relevant security certifications (e.g., CCSP, CSSK, AWS Security Specialty)</li>\n<li>Experience with multi-cloud environments and cloud-to-cloud security</li>\n<li>Knowledge of DevSecOps practices and tools</li>\n<li>Experience with Kubernetes and container security</li>\n<li>Experience in building custom cloud security tools or integrations</li>\n<li>Interest in leveraging AI for cloud security monitoring and automation</li>\n<li>Contributions to open-source cloud security projects</li>\n<li>Experience with securing AI/ML workloads in cloud environments</li>\n</ul>\n<p>Compensation and Benefits:</p>\n<p>$200,000 - $340,000 USD</p>\n<p>Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short &amp; long-term disability insurance, life insurance, and various other discounts and perks.</p>\n<p style=\"margin-top:24px;font-size:13px;color:#666;\">XML job scraping automation by <a href=\"https://yubhub.co\">YubHub</a></p>","url":"https://yubhub.co/jobs/job_bdf9dc88-fbe","directApply":true,"hiringOrganization":{"@type":"Organization","name":"xAI","sameAs":"https://www.xai.com/","logo":"https://logos.yubhub.co/xai.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/xai/jobs/5090998007","x-work-arrangement":"onsite","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":"$200,000 - $340,000 USD","x-skills-required":["Cloud security principles","Compliance frameworks","Best practices","Cloud platform (AWS, GCP, or Azure)","Infrastructure as Code tools (Terraform, CloudFormation)"],"x-skills-preferred":["Relevant security certifications (CCSP, CSSK, AWS Security Specialty)","Multi-cloud environments and cloud-to-cloud security","DevSecOps practices and tools","Kubernetes and container security","Building custom cloud security tools or integrations"],"datePosted":"2026-04-18T15:23:29.833Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Palo Alto, CA"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Cloud security principles, Compliance frameworks, Best practices, Cloud platform (AWS, GCP, or Azure), Infrastructure as Code tools (Terraform, CloudFormation), Relevant security certifications (CCSP, CSSK, AWS Security Specialty), Multi-cloud environments and cloud-to-cloud security, DevSecOps practices and tools, Kubernetes and container security, Building custom cloud security tools or integrations","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":200000,"maxValue":340000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_734a57ad-497"},"title":"Security Engineer","description":"<p>We&#39;re seeking a senior-level Security Engineer to own the design, implementation, and continuous improvement of security guardrails across our cloud infrastructure. You willaki, you&#39;ll build the systems and patterns that enable every team at Saronic to move fast and ship with confidence, with security baked in from the start. You will be the technical authority on how we architect, govern, and defend our AWS environments across commercial and GovCloud.</p>\n<p><strong>Key Responsibilities</strong></p>\n<ul>\n<li>Own the security architecture for Saronic&#39;s AWS environments, including multi-account strategy, network segmentation, identity architecture, and data protection across commercial AWS and AWS GovCloud</li>\n</ul>\n<ul>\n<li>Design and maintain secure-by-default Terraform modules and IaC standards that teams adopt as the standard path, enforcing least privilege, secure defaults, and compliance requirements</li>\n</ul>\n<ul>\n<li>Implement preventive controls (SCPs, permission boundaries, policy-as-code) and detective controls (Config rules, CloudTrail analysis, GuardDuty) as a unified, layered security model</li>\n</ul>\n<ul>\n<li>Design and enforce IAM patterns across AWS accounts, services, and workloads including least-privilege policies, permission boundaries, cross-account access, federation, and service-to-service authentication</li>\n</ul>\n<ul>\n<li>Implement and govern secrets management using tools such as AWS Secrets Manager or Vault, integrated into CI/CD and runtime environments</li>\n</ul>\n<ul>\n<li>Partner with DevOps and Platform Engineering to embed security into CI/CD pipelines, infrastructure provisioning, and deployment workflows</li>\n</ul>\n<ul>\n<li>Build automated compliance validation into infrastructure pipelines and replace manual security gates with automated guardrails wherever possible</li>\n</ul>\n<ul>\n<li>Create self-service security tooling and patterns that allow teams to operate with speed and autonomy while maintaining compliance</li>\n</ul>\n<ul>\n<li>Integrate logging, monitoring, and alerting across cloud infrastructure to validate control effectiveness and detect misconfigurations or threats</li>\n</ul>\n<ul>\n<li>Build and tune cloud-native detections using CloudTrail, GuardDuty, Config, and SIEM integrations</li>\n</ul>\n<ul>\n<li>Support incident response for cloud security events, drive root-cause analysis, and translate findings into improved guardrails and controls</li>\n</ul>\n<p><strong>Required Qualifications:</strong></p>\n<ul>\n<li>6+ years of hands-on experience in cloud security engineering, infrastructure security, DevSecOps, or a closely related security engineering role</li>\n</ul>\n<ul>\n<li>Expert-level proficiency with Terraform, including module design, state management, policy-as-code, and managing complex multi-environment configurations</li>\n</ul>\n<ul>\n<li>Deep expertise in AWS security services and architecture, including IAM, Organizations, SCPs, Control Tower, CloudTrail, Config, GuardDuty, Security Hub, KMS, and VPC security</li>\n</ul>\n<ul>\n<li>Demonstrated experience building security guardrails and reusable infrastructure patterns that engineering teams adopt without friction</li>\n</ul>\n<ul>\n<li>Strong experience with CI/CD pipeline security, IaC review processes, and automated compliance validation</li>\n</ul>\n<ul>\n<li>Experience operating in AWS GovCloud or FedRAMP-regulated cloud environments</li>\n</ul>\n<ul>\n<li>Strong proficiency in Python, Go, Rust, or equivalent languages for building security automation and tooling</li>\n</ul>\n<ul>\n<li>Ability to obtain and maintain a security clearance</li>\n</ul>\n<p><strong>Preferred Qualifications:</strong></p>\n<ul>\n<li>Experience in defence, aerospace, robotics, autonomy, or other high-assurance environments</li>\n</ul>\n<ul>\n<li>Experience designing multi-account AWS landing zones and organisational security architectures from the ground up</li>\n</ul>\n<ul>\n<li>Hands-on experience with Kubernetes security, container security, and service mesh security in cloud-native environments</li>\n</ul>\n<ul>\n<li>Familiarity with NIST SP 800-171, NIST SP 800-53, FedRAMP, or Cloud Computing SRG Impact Levels</li>\n</ul>\n<ul>\n<li>Experience with infrastructure drift detection, automated remediation, and continuous compliance monitoring</li>\n</ul>\n<ul>\n<li>Relevant certifications such as AWS Security Specialty, AWS Solutions Architect Professional, HashiCorp Terraform Associate/Engineer, CCSP, or CISSP</li>\n</ul>\n<p><strong>Additional Information</strong></p>\n<p>Benefits: Medical Insurance: Comprehensive health insurance plans covering a range of services. Saronic pays 100% of the premium for employees and 80% for dependents. Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care. Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents. Time Off: Generous PTO and Holidays. Parental Leave: Paid maternity and paternity leave to support new parents. Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses. Retirement Plan: 401(k) plan. Stock Options: Equity options to give employees a stake in the company’s success. Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage. Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline. Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office</p>\n<p>This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3).</p>\n<p style=\"margin-top:24px;font-size:13px;color:#666;\">XML job scraping automation by <a href=\"https://yubhub.co\">YubHub</a></p>","url":"https://yubhub.co/jobs/job_734a57ad-497","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Saronic Technologies","sameAs":"https://www.saronictechnologies.com/","logo":"https://logos.yubhub.co/saronictechnologies.com.png"},"x-apply-url":"https://jobs.lever.co/saronic/18310005-a24b-4f4c-9538-465df614c4fa","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Terraform","AWS security services","IAM","Organizations","SCPs","Control Tower","CloudTrail","Config","GuardDuty","Security Hub","KMS","VPC security","Python","Go","Rust","CI/CD pipeline security","IaC review processes","automated compliance validation","AWS GovCloud","FedRAMP-regulated cloud environments"],"x-skills-preferred":["Kubernetes security","container security","service mesh security","NIST SP 800-171","NIST SP 800-53","FedRAMP","Cloud Computing SRG Impact Levels","infrastructure drift detection","automated remediation","continuous compliance monitoring","AWS Security Specialty","AWS Solutions Architect Professional","HashiCorp Terraform Associate/Engineer","CCSP","CISSP"],"datePosted":"2026-04-17T12:56:38.157Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Terraform, AWS security services, IAM, Organizations, SCPs, Control Tower, CloudTrail, Config, GuardDuty, Security Hub, KMS, VPC security, Python, Go, Rust, CI/CD pipeline security, IaC review processes, automated compliance validation, AWS GovCloud, FedRAMP-regulated cloud environments, Kubernetes security, container security, service mesh security, NIST SP 800-171, NIST SP 800-53, FedRAMP, Cloud Computing SRG Impact Levels, infrastructure drift detection, automated remediation, continuous compliance monitoring, AWS Security Specialty, AWS Solutions Architect Professional, HashiCorp Terraform Associate/Engineer, CCSP, CISSP"}]}