Cloud Security Engineer

TL;DR

Cloud Security Engineer: Ensuring the security of systems, pipelines, and tools used by engineers at hirify.global, focusing on AWS security posture, container security, and policy as code. Focus on automating security workflows, building visibility into security performance, and supporting infrastructure for privacy features.

Location: In-person collaboration and work in a hybrid model, with 3 days per week spent in the office.

Salary: €6,000 - €8,000 EUR per month.

Company

Flo is the world’s #1 health & fitness app worldwide on a mission to build a better future for female health.

What you will do

• Own and continuously strengthen Flo's AWS security posture using tools like GuardDuty, Inspector, Security Hub, and SSM Patch Manager.
• Harden container image security end-to-end by automatically patching vulnerabilities, signing and verifying images, and enforcing policies at admission.
• Manage CI/CD security across the organisation using policy-as-code tooling, ensuring standards are enforced programmatically.
• Build visibility into security performance by measuring and visualising actionable metrics using tools like Databricks Dashboards or Looker.
• Support the infrastructure for industry-leading privacy features.
• Shape Flo's broader security culture through proactive engagement, documentation, and cross-team collaboration.

Requirements

• 7+ years in Infrastructure Security, Cloud Security, or Security Engineering roles.
• Deep expertise in AWS security services and best practices is essential.
• Proficient in Terraform and Terragrunt.
• Strong knowledge of Kubernetes security, image hardening, and admission control.
• Solid understanding of identity management principles — SSO, OAuth, JWT, SAML.
• Comfortable scripting in Python, Bash, or similar to automate security workflows.

Nice to have

• Experience with security monitoring and event correlation systems (IDS/IPS, SIEM, AWS-native tooling).
• Knowledge of Zero Trust Architecture and its implementations (e.g., Cloudflare).
• Familiarity with secret management processes and tools.
• Experience in multi-cloud environments (AWS and preferably GCP).
• Understanding of business continuity principles (BIA, DRP).
• Professional accreditations such as AWS Security Specialty, CKS, or CISSP.

Culture & Benefits

• Competitive salary and annual reviews.
• Opportunity to participate in Flo’s performance incentive scheme.
• Paid holiday, sick leave, and female health leave.
• Enhanced parental leave and pay for maternity, paternity, same-sex and adoptive parents.
• Accelerated professional growth through world-changing work and learning support.
• 5-week fully paid sabbatical at 5-year Floversary.