Druva

About the Company

Druva is the leading provider of data security solutions, empowering customers to secure and recover their data from all threats. The Druva Data Security Cloud is a fully managed SaaS solution offering air-gapped and immutable data protection across cloud, on-premises, and edge environments. By centralizing data protection, Druva enhances traditional security measures and enables faster incident response, effective cyber remediation, and robust data governance.

Listed Jobs

Company Name

Druva

Job Title

Staff Cloud Security Engineer

Job Description

**Job title:** Staff Cloud Security Engineer **Role Summary:** Lead the design, implementation, and continuous improvement of secure cloud environments for a large SaaS data‑security company. Drive security strategy across AWS and Azure, integrate controls into CI/CD, enforce compliance frameworks, and mentor cross‑functional teams. **Expectations:** - Deliver resilient, compliant cloud architectures that support fast incident response and data governance. - Influence enterprise security posture through policy definition, automation, and threat‑intelligence integration. - Provide expert guidance on threat modeling, vulnerability triage, and remediation prioritization. **Key Responsibilities:** - Design & implement hardened cloud architectures on AWS & Azure (IAM, KMS, VPC, S3, WAF, API Gateway, etc.). - Configure and operate cloud‑native security services (Security Hub, Security Center, CloudTrail). - Embed security controls into CI/CD pipelines, IaC, and incident‑response workflows. - Enforce security policies aligned with SOC 2, ISO 27001, NIST, and industry best practices. - Conduct security assessments, threat modeling, and vulnerability triage across multi‑tenant environments. - Automate remediation with scripting (Bash, PowerShell, Python) and tooling (Wiz, Prisma, Tenable). - Mentor and collaborate with DevOps, Ops, and Cyber Defense teams to adopt zero‑trust and IAM best practices. **Required Skills:** - 8+ years in cloud and systems security (large enterprises). - Deep expertise in AWS & Azure security services and networking. - Proficiency with cloud security tooling (Security Hub, Security Center, CloudTrail, IAM, KMS, WAF). - Strong threat‑modeling, defense‑in‑depth, and vulnerability management knowledge (CWE, CVSS, MITRE ATT&CK). - Experience with IAM/SSO (AWS Identity Center, Entra ID, Okta, OAuth, SAML). - Hands‑on Linux/Unix, container (Docker/Kubernetes), and serverless security. - Automation and scripting: Bash, PowerShell, Python. - Ability to translate security requirements into architecture and policy. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Engineering, or equivalent professional experience. - Cloud security certifications: AWS Security Specialty, Azure Security Engineer, CCSP/CCSK (or equivalent). ---

Santa clara, United states

On site

Senior

14-09-2025