SecOps Engineer

Job Description

As SecOps Engineer at CloudlyIO, you will own the operational security of our cloud infrastructure, AI products, and software delivery pipeline. You will detect, investigate, and respond to security threats, build and maintain security monitoring and automation systems, and ensure that our products meet the compliance standards our enterprise customers require.This is an engineering-first security role. You will not just identify risks; you will build the systems and automation that mitigate them at scale. You are equally comfortable writing a Python script to automate a threat detection workflow, conducting a cloud security posture review, and walking an engineering team through the implications of a misconfigured IAM policy.

Job Requirement

Security Monitoring & Threat Detection
  • Build, maintain, and continuously improve security monitoring and alerting infrastructure across CloudlyIO's cloud environments using CloudWatch, GuardDuty, Grafana, Elasticsearch, and SIEM tooling
  • Monitor for threats, anomalous behavior, and indicators of compromise across cloud infrastructure, application, and network layers
  • Develop and tune detection rules, automated response playbooks, and escalation procedures
Incident Response
  • Lead security incident response from detection through containment, eradication, recovery, and post-incident review
  • Maintain and continuously improve incident response playbooks and runbooks
  • Conduct root cause analysis for security events and drive systemic remediation to prevent recurrence
Cloud Security Operations
  • Operate and enforce security controls across AWS, Azure, and GCP including IAM, KMS, WAF, Security Groups, VPC Flow Logs, and GuardDuty
  • Conduct regular cloud security posture assessments and remediate identified findings
  • Manage certificate lifecycle, SSL/TLS configurations, and secrets management systems
  • Implement and maintain DDoS mitigation and network security controls
Compliance Operations
  • Support and maintain compliance with HIPAA, SOC2, GDPR, and PCI DSS through operational controls, evidence collection, and audit support
  • Maintain accurate security documentation, access logs, and audit trails across all environments
  • Work with product and engineering teams to ensure new features and infrastructure changes meet security and compliance requirements before they reach production
Vulnerability Management
  • Run vulnerability scanning across infrastructure and applications on a regular cadence and track remediation to closure
  • Coordinate penetration testing engagements and manage findings through resolution
  • Perform threat modeling for new systems and significant changes, providing actionable guidance to engineering teams
YOU MAY BE A GOOD FIT IF YOU HAVE

  • 3 to 5 years of hands-on security operations experience in cloud environments, primarily AWS
  • Deep operational knowledge of AWS security services including IAM, GuardDuty, Security Hub, KMS, WAF, CloudTrail, and VPC Flow Logs
  • Hands-on experience with SIEM platforms, log analysis, and building detection rules and alerting workflows
  • Solid incident response experience: you have led real security incidents end to end and can do it again under pressure
  • Working knowledge of compliance frameworks including HIPAA, SOC2, and GDPR in an operational context
  • Proficiency in Python or Bash for security automation and tooling
  • Experience with vulnerability management tools and penetration testing methodology
  • Clear, confident communication: you can brief engineering leads and non-technical executives on security posture and risk with equal effectiveness

PREFERRED QUALIFICATIONS
  • Security certifications such as CEH, CISSP, CompTIA Security+, or AWS Security Specialty
  • Experience with Kubernetes security including RBAC, pod security policies, and network policies
  • Familiarity with threat intelligence platforms and automated threat response tooling
  • Experience securing AI/ML systems including model endpoints, training pipelines, and inference infrastructure
  • Experience in regulated industries such as healthcare or telecommunications
  • Knowledge of database security for MySQL, PostgreSQL, and Elasticsearch
  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related field

COMPENSATION & BENEFITS
  • Salary: Competitive and negotiable based on experience
  • Two annual festive bonuses, each equivalent to half a month's salary
  • Two-day weekends, 10 days casual leave, 10 days sick leave, and 14 public holidays per CloudlyIO's global holiday calendar for Bangladesh
  • Fully subsidized lunch and evening snacks, plus tea and coffee throughout the day
  • Health insurance
  • Direct collaboration with US clients and teams, working on real enterprise AI infrastructure from day one