Cloud Security Engineer

7+ years in Infrastructure Security, Cloud Security, or Security Engineering roles.

Cloud Native Mastery:

Deep expertise in AWS security services and best practices is essential.

Infrastructure as Code:

Proficient in Terraform and Terragrunt — you run everything as code.

Strong knowledge of Kubernetes security, image hardening, and admission control.

Cloud Security Posture:

Own and continuously strengthen Flo's AWS security posture using tools like GuardDuty, Inspector, Security Hub, and SSM Patch Manager.

Container & Supply Chain Security:

Harden container image security end-to-end — patch vulnerabilities automatically with Copacetic, sign and verify images with Cosign/Sigstore, and enforce policies at admission with Kyverno.

Manage CI/CD security across the organisation using policy-as-code tooling (Kyverno, Checkov), ensuring standards are enforced programmatically.

Security Observability:

The Velocity team exists to eliminate friction. We build and own the foundation everything else runs on: cloud infrastructure, developer tooling, and SRE practices. You will:

Embed Security Into the Platform:

Bake security, compliance, and best practices into the core stack so they're invisible to developers and impossible to skip.

Automate Everything:

Drive security-as-code across infrastructure, CI/CD pipelines, and container lifecycles — making manual gates a thing of the past.