Senior Cloud Security Engineer

This job is with Monday.com, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.

We are seeking an experienced Senior Cloud Security Engineer to join our Cloud Infrastructure Security team within monday.com's Security organization. As a cloud-native SaaS company, our security strategy is built on strong cloud fundamentals, identity-centric controls, scalable automation, and pragmatic execution.

In this role, you'll design and implement cloud security controls that protect production at scale, from IAM hardening (including roles and trust policies), through secure cloud architecture patterns, to edge protection and resilience (WAF and DDoS). You'll drive high-impact initiatives across the company and partner closely with R&D, Infrastructure, DevSecOps, and vendors to turn security priorities into shipped outcomes.

monday.com is an AI-first company, and we bring that mindset into security engineering too. One example is building AI-driven remediation workflows that take cloud security findings, generate a remediation path, open a PR, route it to the right fixer and owner, and drive it through verified closure ✅🚀

About The Role

• Design, implement, and mature cloud security controls across our cloud environments and production infrastructure
• Harden cloud identity and access controls (IAM roles/policies/trust relationships, least privilege, cross-account patterns)
• Build and operate privileged access workflows, including Just-In-Time access and strong governance around cloud access
• Strengthen edge security and availability protections, including WAF posture and DDoS resilience for public-facing services
• Drive secure-by-default patterns using Infrastructure-as-Code and policy-as-code approaches
• Lead cloud security architecture reviews and define reusable secure reference patterns for engineering teams
• Operationalize cloud security platforms (CSPM/CDR and related tools, e.g., Wiz/Orca or equivalents) to produce outcomes, not dashboards
• Proactively engage stakeholders across the organization and work with vendors when needed to deliver initiatives end-to-end
  
  

• 5+ years of experience in DevOps, SRE, Production Engineering, DevSecOps, or Cloud Security Engineering
• Highly motivated and execution-oriented, you take ownership and drive initiatives to measurable closure
• Excellent communication and cross-team collaboration skills, comfortable working across the org and with vendors
• Strong cloud provider expertise (AWS/GCP/Azure) with hands-on experience in IAM, networking, and cloud-native services
• Working experience with cloud IAM, including roles, policies, trust relationships, and least-privilege access design
• Experience with Infrastructure-as-Code (Terraform or equivalent) and securing CI/CD workflows
• Strong understanding of Linux, networking, and distributed systems, with production-level troubleshooting skills
• BSc in Computer Science / Engineering or equivalent practical experience