Senior Cloud Security Engineer

As a Senior Cloud Security Engineer at Native, you'll own the security controls customers actually trust us to ship. Every major cloud - AWS, Azure, GCP, OCI - gives you a partial set of native controls, and none of them cover what an enterprise security team really needs. You'll close the gaps: research what each cloud exposes, design controls that produce a consistent security outcome across all of them, and tailor each one to the provider it runs on. You'll work end-to-end. Research, threat model, design, infrastructure-as-code, rollout, production validation. No handoffs, no thrown-over-the-wall designs

Key Responsibilities

• As a Senior Cloud Security Engineer, you'll take full ownership of security controls - from concept to delivery.
• You'll engage with customers, align with our strategic direction, and identify what you and the team should build next.
• You'll ship MVPs directly in production with real customer environments, iterate quickly based on feedback, and ensure the long-term success of your work.
• And yes - you'll also jump in as a Security Hero, helping customers understand what their cloud is doing and what to do about it.
  
  

• 6+ years of experience in cloud security, security engineering, or offensive security.
• You've shipped real controls or built real attacks against at least two of AWS, Azure, GCP, and OCI. You can speak fluently about IAM, resource policies, network
• controls, and audit logs on the clouds you've worked with - not because you read about them, but because you've worked on them in production. Certifications are notwhat we're looking for.
• You think like a product engineer - focused on shipping security controls that actually move customer posture, not perfect designs that never leave the doc. You
• care about impact alongside craft.
• You love getting things done. Engineers at Native enjoy a high degree of autonomy to choose what to build next - so being proactive and taking ownership is key.
• You're comfortable enough in CloudFormation, Terraform, and ARM to prototype your own designs instead of waiting on someone else. And when a cloud provider tells you something is impossible, you don't take that as the final answer.
• And most importantly, you're ready to do the best work of your career. With strong distribution, solid financial backing, and an exceptional team, there's no better
• place to see how far you can go.
• Experience with reactive remediation engines (Cloud Custodian, Stratus Red Team, Prowler, or in-house equivalents), workload identity federation across clouds, or
• multi-tenant / MSP security platforms is a plus.