Cloud Security Lead

Cloud Security Lead (Architecture & Hardening)

Tel Aviv | Full-time

About the Role

We are a fast-growing, high-impact technology company building a next-generation enterprise platform used by organizations worldwide.

As a Cloud Security Lead, you will take ownership of securing a large-scale, multi-cloud environment and a mission-critical product, shaping its security architecture, hardening strategy, and operational resilience.

This is a hands-on leadership role focused on designing secure systems, enforcing best practices, and driving security excellence across engineering and infrastructure.

What You’ll Do

• Design and enforce secure cloud architectures across a multi-cloud environment (AWS / GCP / Azure)
• Define and implement security baselines, configurations, and hardened deployment standards across IaaS, PaaS, and serverless environments
• Build and integrate security-as-code solutions into CI/CD pipelines using Infrastructure-as-Code (IaC) tools
• Develop automation for detection, alerting, and response workflows using cloud APIs and SDKs
• Design and maintain cloud-native monitoring and observability solutions to ensure full visibility across environments
• Investigate and respond to security incidents and vulnerabilities, and drive post-incident improvements
• Collaborate with engineering and product teams to embed security best practices into development workflows
• Lead initiatives around security awareness, enablement, and continuous improvement

Requirements

• Proven experience designing and securing complex cloud architectures
• Strong background in cloud security principles and DevSecOps practices
• Hands-on experience securing Kubernetes / containerized workloads and managing cloud identity (IAM)
• Strong experience with Infrastructure-as-Code (IaC) and policy-as-code approaches
• Proficiency in scripting and automation (Python / Bash / PowerShell)
• Experience with cloud security monitoring, CSPM tools, and SIEM systems
• Strong understanding of attack techniques and threat patterns in cloud environments (e.g., misconfigurations, identity abuse)
• Experience in incident response, detection engineering, and vulnerability management
• High ownership, strong problem-solving skills, and an operations-driven mindset

Nice to Have

• Experience with offensive security / penetration testing in cloud environments
• Background in purple teaming or identifying architectural weaknesses

Why Join

• Work on large-scale, high-impact systems with real-world security challenges
• Take ownership of critical infrastructure and architecture decisions
• Be part of a high-caliber engineering and security team
• Influence how security is built into a core product from the ground up