onsite
Cloud Security Engineer - Ensono
Security Engineer
Lead end‑to‑end vulnerability management for a cloud‑native platform, driving security across application stacks, container images, and infrastructure while ensuring compliance and risk governance.
About the role
Key Responsibilities
- Own the full vulnerability lifecycle: discovery, triage, remediation, and reporting across applications, containers, and cloud infrastructure.
- Integrate security controls into CI/CD pipelines, automating scans and enforcing policy compliance.
- Collaborate with the Compliance Manager to maintain audit readiness and meet regulatory requirements.
- Provide actionable risk assessments and dashboards to engineering and product teams.
- Stay current on emerging threats, tooling, and best practices in cloud security.
Requirements
- 3+ years of experience in DevSecOps or cloud security engineering.
- Hands‑on expertise with vulnerability scanners (e.g., Trivy, Snyk, Nessus) and container security.
- Strong knowledge of cloud platforms (AWS, Azure, or GCP) and IaC security.
- Proficiency in scripting (Python, Bash) and CI/CD tooling (GitHub Actions, GitLab CI, Jenkins).
- Excellent communication skills and a proactive, ownership‑driven mindset.