Responsibilities:

📍Perform technical security reviews and assessments for cloud architectures, Kubernetes and containers, serverless, network controls, and IAM. Apply CIS Benchmarks and vendor best practices. Produce clear remediation plans and track closure. 📍Build and support API-based integrations across GRC, cloud, and identity platforms (AWS, Azure, Okta, Atlassian). Use REST, GraphQL, webhooks, OAuth, and service accounts. 📍Lead threat modeling and design reviews for infrastructure, applications, and services. Document risks and compensating controls. 📍Develop continuous control monitoring and evidence pipelines. Collect, normalize, and map evidence to ISO 27001, SOC 2, PCI DSS, NIST CSF, and ISO 22301 requirements. 📍Drive zero trust improvements across identity, device posture, network segmentation, and service-to-service authentication. 📍Prepare for audits and regulatory requests using automated evidence, inventories, and dashboards. Reduce manual work through automation and self-service. 📍Own and drive workstreams across security governance (e.g., entitlement reviews, access management, vendor security, cyber risk, software compliance). 📍Assess and lead cybersecurity projects across cloud security, container security, and infrastructure hardening. 📍Drive cybersecurity transformation initiatives including implementation of modern security architectures, DevSecOps practices, and zero trust frameworks. 📍Collaborate with DevOps and engineering teams to embed security into CI/CD pipelines, container orchestration platforms (e.g., Kubernetes), and cloud-native services. 📍Advise technical and business teams on secure configurations, emerging threats, and remediation strategies.

Minimum Qualifications:

📍Bachelor’s degree in computer science, information security, engineering, or related field, or equivalent experience. 📍5+ years in cybersecurity with hands-on security engineering in cloud, automation, or platform security. 📍Proficiency in basic coding. Python or JavaScript and shell scripting. 📍Ability to write API clients, parse JSON, and orchestrate workflows in n8n or similar tools (Tines, StackStorm, Airflow, Zapier). 📍Experience building and operating REST or GraphQL integrations. Familiarity with OAuth, service principals, and webhooks. 📍Working knowledge of AWS, GCP, and Azure. Comfortable with IAM, networking, KMS, logging and monitoring, and cloud-native security services.

If this role isn’t the perfect fit, there are plenty of exciting opportunities in blockchain technology, cryptocurrency startups, and remote crypto jobs to explore. Check them on our Jobs Board.