Security Engineer
Senior Cloud Security Engineer at ServiceTitan designing automated security controls, hardening multi-cloud environments, and integrating DevSecOps practices into CI/CD pipelines to safeguard next‑generation applications.
Ready to be a Titan?
We are seeking an experienced Staff Cloud Security Engineer to shape the security foundation of our modern cloud environments and next-generation applications. In this high-impact role, you will design cutting-edge automated security controls, harden multi-cloud infrastructure, and champion secure development practices across the organization. If you are passionate about cloud security, DevSecOps, and staying ahead of emerging threats, this role puts you right at the center of innovation.
What You’ll Do:
DevSecOps and Automation
Pipeline Integration: Integrate robust security controls directly into CI/CD platforms such as GitHub, GitLab, Jenkins, or Azure DevOps.
Automated Scanning: Evaluate and implement pipeline-based security Infrastructure as Code (IaC) scanning. Manage and configure IaC scanning tools to surface true risk.
Developer Feedback Loops: Build and optimize developer feedback loops and automated remediation workflows to ensure software is secure by default. Develop automated scripts using Python, Bash, or PowerShell to streamline security processes.
Identity and Access Management (IAM)
Cloud Identity Controls: Build and maintain IAM security controls across cloud platforms, assessing policies to enforce the principle of least privilege.
Non-Human Identity Management: Standardize management, security controls, and lifecycle expectations with regard to non-human identity.
Secrets Management: Govern the secure use of cloud identities, Application Programming Interfaces (APIs), and secrets management.
Infrastructure Security and Hardening
Cloud Posture: Develop and implement secure infrastructure baselines, vulnerability management processes, and hardening standards across AWS, Azure, or GCP environments.
Infrastructure as Code (IaC): Validate security configurations and leverage IaC tools like Terraform, CloudFormation, or Bicep to ensure repeatable, auditable, and secure infrastructure provisioning.
Network Security: Tackle high-impact infrastructure projects such as multi-cloud network isolation, secure multi-tenant use, and continuous remediation of discovered misconfigurations.
Workload Security
Cloud-Native Architectures: Guide engineering teams on secure architecture design for cloud apps, microservices, serverless services, and PaaS workloads.
Container Security: Advance container and Kubernetes security by implementing runtime controls, supply-chain security, and configuration assessments.
AI & Emerging Tech: Secure in-house and public AI/ML systems against cyber threats, adversarial attacks, and unauthorized access, ensuring models and data pipelines are protected throughout the solution lifecycle.
Data Security and Privacy
Data Protection: Ensure that sensitive clou
Posted June 20, 2026