SERVICE MESH

Cloud Security Engineer (Service Mesh): JD: The Cloud Security team is responsible for securely enabling the use of cloud technologies to support the firm's strategy to leverage cloud-native services at enterprise scale. This team defines cloud security requirements and builds tooling and automation to deliver enterprise-grade capabilities that protect the firm and simplify workload security for application teams. We work across multiple cloud providers and are currently seeking an experienced multi-cloud Security Engineer with a strong focus on Service Mesh Technology. The ideal candidate will be familiar with cloud architecture concepts, cloud services, and modern programming languages. This engineer will help implement security controls (preventive, detective, and corrective) and manage platforms that enhance the security of our cloud footprint. The role also supports Security Operations teams in extending enterprise security functions into cloud environments. Primary Responsibilities Design, develop, test, and deploy security controls across the firm’s cloud footprint, with a primary focus on Service Mesh Technology. Provide security recommendations and solutions for migrating and new applications across Azure, AWS, and other cloud platforms, emphasizing Service Mesh integration. Serve as a subject matter expert for security tools and DevOps practices across major cloud providers. Implement and manage Service Mesh security controls, including identity, traffic encryption, policy enforcement, and observability. Collaborate with vendors and internal squads to develop, deploy, and test cloud security services. Respond to cloud security drifts and coordinate remediation with stakeholders. Integrate, configure, document, and deploy compliant infrastructure and supporting services in cloud platforms. Troubleshoot issues, analyze root causes, and resolve bugs in owned or managed security solutions. Partner with Risk Management, Security Architecture, and Cyber Incident Response teams to ensure proper controls are deployed and tested. Work in a globally distributed team to deliver innovative and robust cloud-centric security solutions. Required Skills 5+ years of experience in software and/or cloud platform engineering, with a strong emphasis on Service Mesh technologies (e.g., Istio, Linkerd, Consul, AWS App Mesh). Deep understanding of the Shared Responsibility Model and cloud-native security risks. Experience across the security assurance lifecycle: prevent, detect, respond, and remediate. Familiarity with Cloud Security Posture Management (CSPM) tools such as Wiz, Prisma, Check Point CloudGuard. Experience with Policy-as-Code using platforms like OPA and Rego. Hands-on experience with event-driven serverless security controls (e.g., AWS Lambda, Azure Functions). Strong grasp of DevOps workflows, Secure SDLC, and Infrastructure as Code (IaC) tools like Terraform. Working knowledge of logging and data pipeline architectures in cloud environments. Proficiency in scripting languages such as PowerShell, Python, Bash, or Go. Familiarity with Agile methodologies and CI/CD pipelines (GitHub Actions, Jenkins). Experience with ITSM processes and risk control frameworks. Ability to communicate complex technical concepts to non-technical stakeholders. Experience in the financial industry and cloud certifications are a plus.