About Us:

At Tessell, we are on the cutting edge of cloud technologies, and security is at the heart of everything we do. As a rapidly growing company, we are looking for a passionate and experienced Principal Cloud Security Engineer to join our team and drive the design, implementation, and enforcement of cloud security best practices across our environment. You will work closely with engineering, operations, and product teams to secure our cloud infrastructure, ensuring the confidentiality, integrity, and availability of our data and services.

Role Overview:

As a Principal Cloud Security Engineer, you will play a key role in shaping and executing our cloud security strategy. You'll leverage your expertise to design and implement robust security architectures, guide teams on cloud security best practices, and contribute to the secure deployment of cloud-native applications and services. You will also mentor and collaborate with security and engineering teams to ensure that security is integrated throughout our cloud environments.

This is a high-impact role that will involve influencing the future of our cloud security posture, working with cutting-edge cloud technologies, and contributing to a highly collaborative, security-conscious culture.

Responsibilities:

• Lead the design and implementation of cloud security architectures for applications, platforms, and infrastructure in public cloud environments (e.g., AWS, Azure, GCP).
• Drive the adoption of cloud security best practices, frameworks, and industry standards (e.g., SOC2, ISO 27001, PCI) across all cloud environments.
• Work closely with development, DevOps, and security teams to integrate security controls into the CI/CD pipeline, infrastructure-as-code (IaC), and automated deployment processes.
• Lead threat modeling, vulnerability assessments, risk assessments, and incident response for cloud-based applications and services.
• Develop and enforce cloud security policies, ensuring compliance with regulatory and industry standards.
• Implement cloud-native security tools and techniques for data encryption, identity and access management (IAM), network segmentation, security monitoring, and incident detection.
• Conduct security audits and assessments of cloud environments and services to identify vulnerabilities and recommend improvements.
• Collaborate with cross-functional teams to develop and maintain disaster recovery and business continuity plans within cloud environments.
• Stay up-to-date with the latest cloud security trends, threats, and technologies, and contribute to the development of the company's cloud security strategy.
  
  

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
• 8+ years of experience in security engineering, with a focus on cloud security.
• Proven experience securing public cloud platforms (AWS, Azure, Google Cloud).
• Strong expertise in securing cloud-native applications, serverless architectures, containers, microservices, and APIs.
• Deep knowledge of security controls, threat modeling, and risk management frameworks.
• Hands-on experience with tools such as AWS IAM, Azure Security Center, GCP Security, Kubernetes security, and cloud-native monitoring and logging tools (e.g., AWS CloudTrail, Azure Monitor).
• Familiarity with infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation) and security automation.
• Expertise in encryption technologies, key management, and data privacy controls.
• Strong experience with incident response, vulnerability management, and security operations in cloud environments.
• Knowledge of security compliance frameworks and regulatory requirements (e.g., SOC2, HIPAA, PCI-DSS).
• Strong understanding of networking concepts, including VPNs, firewalls, security groups, VPCs, and private/public subnetting.
• Excellent communication skills and the ability to explain complex security concepts to non-technical stakeholders.
  
  

Preferred Qualifications:

• Cloud security certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer).
• Experience with cloud security automation and orchestration.
• Familiarity with zero-trust architecture principles.
• Experience in securing containerized applications and Kubernetes clusters.
• Familiarity with DevSecOps principles and automated security testing in CI/CD pipelines.
• Experience with application security (AppSec) tools and techniques (e.g., static/dynamic analysis, pen testing).
  
  

Why Join Us:

• Work in a high-energy, collaborative startup environment with a focus on innovation.
• Opportunities for professional growth and career advancement.
• A flexible, inclusive, and transparent culture where your ideas matter.
• The chance to directly impact our product, customers, and the success of the company.