Principal Cloud Security Engineer

Engineering San Jose, California San Francisco, California Seattle, Washington Boulder, Colorado

You will work closely with all our internal development teams to ensure we build in security from day one and follow best practices.  Ideally you will have a solid development background and have progressed to be a Cloud security expert.


You will work closely with developers to build and deliver secure software using DevOps and cloud services, specifically Amazon Web Services (AWS). You will be responsible for leveragingprinciples, practices and tools in DevOps and AWS to improve the reliability, integrity and security of applications.


Your ability to keep up to date on all cloud architecture and security design, both for building new architectures and for adapting tried-and-true security tools and processes to the cloud is key. 


You will be an ideal candidate if:

  • Have significant experience performing security design review of distributed systems and APIs.
  • Served as a cloud security SME for high visibility cloud  initiatives.
  • Created security reference architecture for multi-tenant cloud initiatives.
  • Have knowledge of cloud computing (preferably AWS) operations and how to secure them.
  • Have an ability to translate compliance and security requirements into product requirements.
  • Have an ability to work with engineers to identify thetradeoffs of different solutions and recommend the idealdesign to meet security requirements.
  • Have experience in secure development especially in large, complex system environments.

Required Skills:

  • Deep knowledge of cloud operational models and secure SaaS architecture in a world of containerized microservices.
  • Subject matter expertise in multiple domains, including cloud security, web security, mobile security, AuthN/Authzprotocols (SAML, JWT, OAuth, OpenID, Ping, Okta, etc.) and infrastructure security (Chef/Puppet).
  • Experience in applying security to cloud technologies(Managing secrets, Securing CD pipeline, Secure Infrastructure as Code, Container Security)
  • Knowledge of primary AWS services (EC2, ELB, RDS, Route53, S3, Lambda) and IAM implementation
  • Expertise in cloud architecture and security fundamentals including containers, software-defined networks, high availability design, multicloud, and serverless compute.
  • Hands on experience in driving end to end security for cloud product - SAST, DAST, IAST, OSS scanning, pen testing.
  • Expert in threat modeling and secure architecture review.
  • 10+ years total experience and 4+ years in Cloud Security
  • Presenting security risks to wide audience including senior management

Desired Skills:

  • Experience designing and building security services in a SecDevOps cloud operations model.
  • Experience with Docker and Kubernetes.
  • Knowledge of compliance requirements for industry standard certifications like like PCI DSS, SOC2, HIPAA, FedRAMP 

 We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying. 

For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records. 


Thank you for your interest in Splunk!