We are looking for a hands-on Cloud Security Engineer to join our clients security team as an individual contributor.You'll be responsible for proactively improving our security posture across cloud infrastructure, CI/CD pipelines, developer tooling, and runtime environments. You'll work closely with DevOps, SRE, and engineering teams to secure every stage of the software development lifecycle and operational stack.This role is highly technical.You should be comfortable writing automation, deploying infrastructure-as-code, and getting your hands dirty with tools like Terraform, ArgoCD, Docker, and Vault.Key Responsibilities:Infrastructure & Cloud Security• Design, implement, and monitor security controls in AWS and GCP environments.• Harden Kubernetes clusters (GKE), VPCs, IAM, and access boundaries using tools like Terraform and Ansible.• Evaluate and implement zero trust principles using Tailscale, Okta, and Cloudflare.CI/CD & Developer Security Automation• Build and maintain CI/CD security automations using GitHub Actions, GitLab CI, and ArgoCD.• Implement automated security scanning for code, dependencies, container images, and Terraform plans.• Enforce security guardrails in Terraform and Git workflows (e.g., OPA, Sentinel, custom policies).Identity, Access, and Secrets Management• Design secure workflows for managing secrets using HashiCorp Vault and Okta.• Implement role-based access controls (RBAC) and automated provisioning/deprovisioning across services.Runtime Security• Implement security observability for containerizedenvironments with Grafana, GKE, and NGINX logs.• Collaborate with SREs to monitor for anomalous behavior or misconfigurations in production workloads.Risk Reduction & Incident Readiness• Conduct threat modeling and security reviews of internal and third-party services (e.g., Zuplo, Terraswitch, Temporal).• Develop playbooks and contribute to incident response processes.• 3+ years in cloud security, DevOps, or infrastructure engineering with security responsibilities.• Strong experience with at least one major cloud provider (GCP preferred).• Solid hands-on knowledge of Kubernetes, Docker, and IaC (Terraform).• Experience with CI/CD platforms like GitHub Actions, GitLab CI, or ArgoCD.• Proficient with scripting and automation (Python, Bash, Go, or similar).• Familiar with secrets management (Vault), identity providers (Okta), and zero trust networking.• Comfortable owning security tooling and driving initiatives end-to-end.• Experience working with additional cloud platforms beyond GCP (e.g., AWS, Azure).• Experience being involved in incident management and resolution.If this role is of interest to you please apply now or contact Ciaran Bergin with any questions you may have.This is a remote first role based in Ireland with minimal office attendance required.