We are seeking a Senior Cloud Security Engineer to lead the hands‑on implementation, operation, and continuous improvement of security controls across our cloud environments. This role is primarily engineering‑focused, responsible for building, configuring, and maintaining cloud security technologies at scale. Architecture responsibilities are an important extension of the role, supporting secure design patterns, standards, and long‑term improvements, but the core expectation is strong technical execution and day‑to‑day engineering ownership. The ideal candidate combines deep cloud and traditional security expertise with the ability to collaborate effectively with corporate IT, engineering teams, and security leadership. ESSENTIAL DUTIES AND RESPONSIBILITIES: Cloud Security Engineering Implement, configure, and operate security controls across cloud environments (IaaS, PaaS, SaaS). Deploy and manage cloud security technologies, including: Identity and access management (IAM, role design, privileged access) Network security controls (firewalls, segmentation, private connectivity) Cloud security platforms (CSPM, CWPP, CIEM) Encryption, key management, and secrets management Logging, monitoring, and alerting integrated with SIEM/SOC workflows Support secure CI/CD pipelines, infrastructure‑as‑code, and automation efforts. Perform hands‑on troubleshooting and remediation of cloud security issues. Partner with operations and engineering teams to securely deploy new cloud services and workloads. Security Operations & Risk Reduction Identify, assess, and remediate cloud security risks and misconfigurations. Respond to security findings from monitoring tools, vulnerability scans, audits, and incidents. Improve detection coverage, alert quality, and response workflows related to cloud services. Ensure security controls are scalable, reliable, and aligned with operational realities. Architecture & Design Contribute to cloud security architecture, reference designs, and technical standards. Active participation on the Architecture Review Board. Participate in security design reviews and architecture discussions for new cloud initiatives. Help define guardrails and best practices that enable teams to build securely by default. Translate architectural guidance into practical, implementable engineering solutions. Collaboration & Communication Work closely with corporate IT, cloud platform teams, application teams, and other security staff. Communicate security requirements and risks clearly to both technical and non‑technical audiences. Act as a hands‑on security partner rather than a gatekeeper. Mentor junior engineers and share operational best practices.
REQUIRED: 7+ years of experience in information security, with a strong emphasis on hands‑on cloud security engineering. Demonstrated experience securing at least one major cloud platform (AWS, Azure, GCP). Strong proficiency with multiple standard security technologies, including: IAM and directory services Network and firewall technologies Workload and endpoint protection Vulnerability and configuration management Security logging, monitoring, and SIEM integration Solid understanding of cloud networking, compute, storage, and application fundamentals. Proven ability to work effectively with corporate IT and cross‑functional engineering teams. Strong written and verbal communication skills. PREFERRED: Experience contributing to cloud security architecture or reference designs. Familiarity with DevSecOps practices and infrastructure‑as‑code tools. Experience in large enterprise or regulated environments. Knowledge of frameworks such as NIST, CIS Benchmarks, or ISO 27001. Multi-cloud experience Relevant cloud or security certifications (e.g., AWS/Azure Security, CISSP, CCSP).
Sandisk is committed to providing equal opportunities to all applicants and employees and will not discriminate against any applicant or employee based on their race, color, ancestry, religion (including religious dress and grooming standards), sex (including pregnancy, childbirth or related medical conditions, breastfeeding or related medical conditions), gender (including a person’s gender identity, gender expression, and gender-related appearance and behavior, whether or not stereotypically associated with the person’s assigned sex at birth), age, national origin, sexual orientation, medical condition, marital status (including domestic partnership status), physical disability, mental disability, medical condition, genetic information, protected medical and family care leave, Civil Air Patrol status, military and veteran status, or other legally protected characteristics. We also prohibit harassment of any individual on any of the characteristics listed above. Our non-discrimination policy applies to all aspects of employment. We comply with the laws and regulations set forth in the " Know Your Rights: Workplace Discrimination is Illegal ” poster. Our pay transparency policy is available here