About this role
As the global leader in AI-powered customer experience assurance, we help some of the world's most recognized brands deliver seamless, reliable, and engaging interactions across voice, digital, messaging, and AI-powered channels. Every year, our platform helps optimize hundreds of millions of customer journeys, ensuring businesses can confidently deliver exceptional experiences at scale.
As enterprises race to deploy agentic AI, the defining question is no longer whether AI can handle customer interactions, it’s whether those interactions can be trusted. Cyara is the confidence layer that answers that question, testing AI agents with AI agents to detect hallucinations, validate decisions, and ensure compliance before failures ever reach your customers.
Joining Cyara means helping shape the future of customer experience, partnering with some of the world’s biggest brands, and working alongside passionate, talented people who are committed to making every customer interaction better.
Job Function Description:
As a Senior Cloud Security Engineer, you will be responsible for designing, implementing, and optimizing security controls across cloud environments. You will work closely with infrastructure, product, and engineering teams to ensure workloads, identities, data, and networks are securely architected, monitored, and maintained. This includes building scalable security automation, enforcing policy-as-code, strengthening identity and access practices, and enabling secure-by-default cloud operations.
Why you should join us:
Looking for a place where your ideas matter, your growth is accelerated, and your work creates real impact? Welcome to Cyara.
We're building the assurance layer that gives enterprises the confidence to deploy agentic AI at scale with a global team that values curiosity, collaboration, and continuous learning. Whether you're launching new ideas, solving complex problems, or learning from talented colleagues across the world, you'll be surrounded by people who challenge and support you to do your best work.
At Cyara, inclusivity isn't a buzzword, it's part of who we are. We foster a culture where everyone feels seen, heard, and empowered to contribute. Pair that with competitive pay, comprehensive benefits, flexible work options, recognition programs, and a strong focus on employee well-being, and you've got a workplace designed for both success and fulfilment.
Big opportunities. Real impact. Amazing people. That's the Cyara experience.
Cyara’s Diversity, Equity, Inclusive and Belonging Statement:
At Cyara, we are dedicated to fostering a workplace that embodies equal opportunity and champions diversity, equity, inclusion, and belonging (DEIB). We strive to cultivate an environment where every individual feels valued, respected, and empowered to bring their whole selves to work, contributing unique perspectives and talents. Our commitment includes continuously evaluating and enhancing our policies, practices, and culture to align with our DEIB principles. We ensure a discrimination-free environment where individuals are evaluated solely on their merits and abilities, regardless of legally protected statuses such as sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, gender identity, veteran status, or medical condition. By celebrating our differences and championing inclusivity, we enrich our organization, make more thoughtful decisions, and drive collective success.
Cyara’s Values Statement:At Cyara, our values shape everything we do. We're passionate about Delivering Excellenceby putting the customer first, collaborating globally, and always striving to improve.We take smart risks andInnovate Boldly, setting new standards and learning from every experience.Integrity Firstis our cornerstone, we value humility, authenticity, and respect for diversity, building trust in all we do. We Embrace Curiosity by empowering you to experiment, learn, and grow in a dynamic environment. At Cyara, our values drive us forward, shaping a culture where innovation and excellence thrive.
Agencies: Thanks, but we’ve got this one! Please, no phone calls or emails to any employees of Cyara outside of the Talent Acquisition team. Cyara’s policy is to only accept resumes from Agencies via the Cyara Agency Portal. Agencies must have a valid fee agreement in place, and they must have been assigned the specific requisition to which they submit resumes, by the Cyara Talent Acquisition team before submitting any CVs. Any resume submitted outside of this process will be deemed the sole property of Cyara and, in the event, a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.
• Cloud Architecture & Design – Designing secure-by-default cloud architectures and integrations, ensuring all new infrastructure meets rigorous security standards before deployment. • Identity & Access Management (IAM) – Designing and reviewing cloud IAM strategies by defining roles, least-privilege policies, service accounts, and access boundaries across AWS, Azure, and GCP. • Cloud Configuration Hardening – Locking down storage buckets, network security groups, load balancers, databases, and managed services to prevent accidental exposure and ensure compliance. • DevSecOps & CI/CD Security – Securing the software supply chain by reviewing pipeline permissions, secrets handling, and artifact signing to prevent unauthorized deployments to production. • Threat Modeling & Risk Assessment – Conductin threat modeling sessions with architects to identify structural risks (e.g., compromised roles) and defining security requirements for new features. • Security Automation & Policy-as-Code – AWS‑centric security automation by developing Terraform guardrails, enforcing Policy-as-Code through OPA/Conftest and AWS Service Control Policies (SCPs), and building AWS-native auto‑remediation workflows using AWS Config, EventBridge, Lambda, and SSM Automation to ensure continuous compliance and enforcement of cloud security standards. • Security Monitoring & Alert Triage – Managing the intake of alerts from CSPM, SIEM, and cloud-native tools (GuardDuty, Defender, SCC), distinguishing real threats from operational noise. • Cloud Incident Response – Leading investigations into cloud-specific incidents, including compromised credentials, suspicious API calls, crypto-mining activity, or exposed resources. • Vulnerability Management – Running and analyzing scans for cloud workloads (VMs, containers, serverless) and prioritizing remediation based on contextual risk rather than generic CVSS scores. • Logging & Audit Readiness – Ensuring cloud audit logs are enabled, immutable, centralized, and readily available for forensic investigations and compliance audits. • Cross-Functional Advisory – Serving as a subject matter expert for developer, infrastructure, and platform teams, translating complex security requirements into practical, engineering-focused guidance.
• Bachelor’s degree in computer science, Information Security, or a related field; advanced degree preferred. • Minimum of 8 years of experience in information security, with a demonstrated focus on Cloud Security Architecture, Engineering, and Posture Management. • In-depth knowledge of CIS Benchmarks, Cloud Security Alliance (CSA) CCM, and NIST 800-53 as they apply to cloud environments. • Extensive experience with CSPM and CNAPP tools (e.g., Wiz, Prisma Cloud, AWS Security Hub), including their deployment, tuning, and integration into ticketing workflows. • Deep expertise in AWS security services (IAM, GuardDuty, KMS, SCPs, WAF) and experience securing Kubernetes (EKS) and serverless architectures. • Proven experience implementing Infrastructure as Code (IaC) security scans and Policy-as-Code (using Terraform, OPA, or CloudFormation) to enforce security guardrails. • Knowledge and experience with development and implementation of security controls for AI/ML infrastructure, including securing data pipelines and LLM integrations. • Experience collaborating with DevOps teams to secure CI/CD pipelines and supply chain workflows (Github Actions, GitLab, Jenkins). • Strong analytical skills with the ability to conduct cloud forensics and support incident response for complex infrastructure compromises. • Excellent communication skills, with the ability to translate technical security risks into practical guidance for developers and platform engineers. • Relevant certifications such as AWS Certified Security – Specialty, ISC2 CCSP (Certified Cloud Security Professional), CSA CCSK, or CISSP are highly desirable.
As enterprises race to deploy agentic AI, the defining question is no longer whether AI can handle customer interactions, it’s whether those interactions can be trusted. Cyara is the confidence layer that answers that question, testing AI agents with AI agents to detect hallucinations, validate decisions, and ensure compliance before failures ever reach your customers.
Joining Cyara means helping shape the future of customer experience, partnering with some of the world’s biggest brands, and working alongside passionate, talented people who are committed to making every customer interaction better.
Job Function Description:
As a Senior Cloud Security Engineer, you will be responsible for designing, implementing, and optimizing security controls across cloud environments. You will work closely with infrastructure, product, and engineering teams to ensure workloads, identities, data, and networks are securely architected, monitored, and maintained. This includes building scalable security automation, enforcing policy-as-code, strengthening identity and access practices, and enabling secure-by-default cloud operations.
Why you should join us:
Looking for a place where your ideas matter, your growth is accelerated, and your work creates real impact? Welcome to Cyara.
We're building the assurance layer that gives enterprises the confidence to deploy agentic AI at scale with a global team that values curiosity, collaboration, and continuous learning. Whether you're launching new ideas, solving complex problems, or learning from talented colleagues across the world, you'll be surrounded by people who challenge and support you to do your best work.
At Cyara, inclusivity isn't a buzzword, it's part of who we are. We foster a culture where everyone feels seen, heard, and empowered to contribute. Pair that with competitive pay, comprehensive benefits, flexible work options, recognition programs, and a strong focus on employee well-being, and you've got a workplace designed for both success and fulfilment.
Big opportunities. Real impact. Amazing people. That's the Cyara experience.
Cyara’s Diversity, Equity, Inclusive and Belonging Statement:
At Cyara, we are dedicated to fostering a workplace that embodies equal opportunity and champions diversity, equity, inclusion, and belonging (DEIB). We strive to cultivate an environment where every individual feels valued, respected, and empowered to bring their whole selves to work, contributing unique perspectives and talents. Our commitment includes continuously evaluating and enhancing our policies, practices, and culture to align with our DEIB principles. We ensure a discrimination-free environment where individuals are evaluated solely on their merits and abilities, regardless of legally protected statuses such as sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, gender identity, veteran status, or medical condition. By celebrating our differences and championing inclusivity, we enrich our organization, make more thoughtful decisions, and drive collective success.
Cyara’s Values Statement:At Cyara, our values shape everything we do. We're passionate about Delivering Excellenceby putting the customer first, collaborating globally, and always striving to improve.We take smart risks andInnovate Boldly, setting new standards and learning from every experience.Integrity Firstis our cornerstone, we value humility, authenticity, and respect for diversity, building trust in all we do. We Embrace Curiosity by empowering you to experiment, learn, and grow in a dynamic environment. At Cyara, our values drive us forward, shaping a culture where innovation and excellence thrive.
Agencies: Thanks, but we’ve got this one! Please, no phone calls or emails to any employees of Cyara outside of the Talent Acquisition team. Cyara’s policy is to only accept resumes from Agencies via the Cyara Agency Portal. Agencies must have a valid fee agreement in place, and they must have been assigned the specific requisition to which they submit resumes, by the Cyara Talent Acquisition team before submitting any CVs. Any resume submitted outside of this process will be deemed the sole property of Cyara and, in the event, a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.
• Cloud Architecture & Design – Designing secure-by-default cloud architectures and integrations, ensuring all new infrastructure meets rigorous security standards before deployment. • Identity & Access Management (IAM) – Designing and reviewing cloud IAM strategies by defining roles, least-privilege policies, service accounts, and access boundaries across AWS, Azure, and GCP. • Cloud Configuration Hardening – Locking down storage buckets, network security groups, load balancers, databases, and managed services to prevent accidental exposure and ensure compliance. • DevSecOps & CI/CD Security – Securing the software supply chain by reviewing pipeline permissions, secrets handling, and artifact signing to prevent unauthorized deployments to production. • Threat Modeling & Risk Assessment – Conductin threat modeling sessions with architects to identify structural risks (e.g., compromised roles) and defining security requirements for new features. • Security Automation & Policy-as-Code – AWS‑centric security automation by developing Terraform guardrails, enforcing Policy-as-Code through OPA/Conftest and AWS Service Control Policies (SCPs), and building AWS-native auto‑remediation workflows using AWS Config, EventBridge, Lambda, and SSM Automation to ensure continuous compliance and enforcement of cloud security standards. • Security Monitoring & Alert Triage – Managing the intake of alerts from CSPM, SIEM, and cloud-native tools (GuardDuty, Defender, SCC), distinguishing real threats from operational noise. • Cloud Incident Response – Leading investigations into cloud-specific incidents, including compromised credentials, suspicious API calls, crypto-mining activity, or exposed resources. • Vulnerability Management – Running and analyzing scans for cloud workloads (VMs, containers, serverless) and prioritizing remediation based on contextual risk rather than generic CVSS scores. • Logging & Audit Readiness – Ensuring cloud audit logs are enabled, immutable, centralized, and readily available for forensic investigations and compliance audits. • Cross-Functional Advisory – Serving as a subject matter expert for developer, infrastructure, and platform teams, translating complex security requirements into practical, engineering-focused guidance.
• Bachelor’s degree in computer science, Information Security, or a related field; advanced degree preferred. • Minimum of 8 years of experience in information security, with a demonstrated focus on Cloud Security Architecture, Engineering, and Posture Management. • In-depth knowledge of CIS Benchmarks, Cloud Security Alliance (CSA) CCM, and NIST 800-53 as they apply to cloud environments. • Extensive experience with CSPM and CNAPP tools (e.g., Wiz, Prisma Cloud, AWS Security Hub), including their deployment, tuning, and integration into ticketing workflows. • Deep expertise in AWS security services (IAM, GuardDuty, KMS, SCPs, WAF) and experience securing Kubernetes (EKS) and serverless architectures. • Proven experience implementing Infrastructure as Code (IaC) security scans and Policy-as-Code (using Terraform, OPA, or CloudFormation) to enforce security guardrails. • Knowledge and experience with development and implementation of security controls for AI/ML infrastructure, including securing data pipelines and LLM integrations. • Experience collaborating with DevOps teams to secure CI/CD pipelines and supply chain workflows (Github Actions, GitLab, Jenkins). • Strong analytical skills with the ability to conduct cloud forensics and support incident response for complex infrastructure compromises. • Excellent communication skills, with the ability to translate technical security risks into practical guidance for developers and platform engineers. • Relevant certifications such as AWS Certified Security – Specialty, ISC2 CCSP (Certified Cloud Security Professional), CSA CCSK, or CISSP are highly desirable.
Tech stack
AWSAzureGCPTerraformPrismaKubernetes
About Cyara
Cyara is hiring for the sr. security engineer - cloud security role. NewJob aggregates active openings directly from Cyara's applicant tracking system, so this listing is current.
More jobs at Cyara →