Senior Information Security Engineer - Cloud Security

Remote US, New York City

Applications have closed


Get your ideas to market faster with a developer data platform built on the leading modern database. MongoDB makes working with data easy.

View company page

The worldwide data management software market is massive (IDC forecasts it to be $136 billion by 2027!). At MongoDB we are transforming industries and empowering developers to build amazing apps that people use every day. We are the leading developer data platform and the first database provider to IPO in over 20 years. Join our team and be at the forefront of innovation and creativity.

The MongoDB Security Organization is responsible for understanding the CyberSecurity risks and threats that the business faces, and implements policies, processes and technology that reduces risk in alignment with business priorities. CyberSecurity is a fast changing discipline, applies to every single employee and is a critical concern for our customers.

As the Senior Cloud Security Engineer, you will be responsible for ensuring MongoDB’s utilization of public cloud provider’s tools and infrastructure are in alignment with security best practices, company policies and your own posture on what controls should be implemented.

This role can be based out of our New York City office or remotely in the United States.

The right candidate for this role will be:

  • Experienced with 5+ years working in an Engineering organization, with a focus in modern operations, maintenance and security
  • Obsessed with automation and identifying workflow improvements to remove humans from toil-heavy manual processes, as well as developing tools that can scale as the Company’s needs grow
  • Knowledgeable about networking constructs on the modern internet, such as reverse proxies, API gateways and cloud firewalls
  • Passionate about learning modern Cloud Security and Information Security threats, mitigations and control frameworks 
  • Keeping up to date with security advisories, trade publications, security conventions and notable security researchers
  • Skilled at communicating complex technical ideas to non-technical audiences
  • Direct hands-on experience with Amazon Web Services (AWS), Google Cloud Platform (GCP), and/or Azure is a plus
  • Experienced with Infrastructure As Code (IAC) such as Terraform, CloudFormation, scripting with Python, participation in Capture The Flags (CTFs) or other security exercises. This is not required but definitely a plus
  • Hyper-organized and capable of juggling multiple high-priority projects concurrently

Position Expectations:

  • Implement business-pragmatic controls that protect MongoDB’s Cloud accounts as well as the services and data within these accounts
  • Responsible for identifying control weaknesses and implementing tool(s) to manage configuration(s) and required reporting (e.g., detection and response)
  • To the extent possible, enable MongoDB Employees to self-service usage of Cloud Accounts, without implementing unnecessary barriers or gates
  • Cross-train MongoDB Security and Engineering employees on Cloud Controls and best practices. Consult with security engineering peers to ensure their needs are accounted for within our Cloud accounts
  • Understand threats, risks and control gaps and work with Security Leadership to develop plans to address via advocacy and education in order to help scale Security solutions
  • Maintain relationships with Product Managers and Company leadership to help ensure Cloud Security Policy decisions are pragmatic
  • Develop actionable metrics and feedback cycles for your ownership areas, in order to drive continuous improvement

Success Measures:

  • Design, implement and maintain system(s) and or tool(s) to provide assurance around Cloud controls
  • Provide guidance and best practices to other engineering teams on Cloud security best practices

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: APIs Automation AWS Azure Cloud Firewalls GCP MongoDB Python Scripting Terraform

Perks/benefits: Career development Fertility benefits Parental leave Startup environment

Regions: Remote/Anywhere North America
Country: United States
Job stats:  22  4  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.