Cloud Security Engineer

at Perplexity AI
πŸ“ San Francisco, United States
USD 250,000-350,000 per year
MIDDLE
βœ… Hybrid

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 3 Go @ 6 Terraform @ 3 Python @ 6 CI/CD @ 3 Distributed Systems @ 6 AWS @ 3 Microservices @ 6 Compliance @ 3

Details

Perplexity is seeking a highly experienced and hands-on Cloud Security Engineer to join our dynamic security team, revolutionizing the way people search and interact with the internet. In this role, you will lead efforts to build and maintain secure, scalable infrastructure that empowers engineers to innovate quickly and safely.

Responsibilities

  • Partner with infrastructure and engineering teams to embed security into development workflows and promote secure-by-default patterns.
  • Build Terraform modules with built-in security guardrails, such as logging, encryption, and automated threat detection enablement.
  • Deploy cloud-native detection capabilities using AWS GuardDuty, Security Hub, and custom detection rules to identify credential compromise, crypto-mining, and lateral movement.
  • Maintain SOC 2 Type II and ISO 27001 compliance through automated collection of cloud control evidence.
  • Conduct security audits of cloud resource configurations using tools like AWS Config and Open Policy Agent, and remediate deviations from CIS Benchmarks and internal security policies.
  • Secure CI/CD and supply chain pipelines by implementing controls such as artifact signing, secret scanning, and dependency monitoring.
  • Apply zero trust principles through strict network segmentation, authentication, and authorization across cloud environments.
  • Participate in the security on-call rotation and respond to security alerts and incidents to ensure rapid mitigation and root cause analysis.

Requirements

  • 8+ years of experience in Cloud Infrastructure, Platform Engineering, or similar roles.
  • Proven track record of building and scaling infrastructure at high-growth technology companies.
  • Deep understanding of cloud-native architectures, microservices, and distributed systems.
  • Experience securing CI/CD pipelines, deployment automation, and internal tooling.
  • Strong programming skills in Python, Go, or similar languages.
  • Experience with Terraform, AWS (GuardDuty, Security Hub, AWS Config), and Open Policy Agent.
  • Familiarity with compliance frameworks and standards such as SOC 2 Type II, ISO 27001, and CIS Benchmarks.
  • Bonus: Experience with AI/ML infrastructure and multi-cloud environments.

Benefits and Compensation

  • Cash compensation range: $250,000 - $350,000 per year.
  • Final offer amounts are determined by multiple factors, including experience and expertise, and may vary from the amounts listed above.
  • Equity may be part of the total compensation package.
  • Comprehensive health, dental, and vision insurance for you and your dependents. Includes a 401(k) plan.

Location & Work Arrangement

  • San Francisco; role is advertised as Hybrid (on-site/remote mix).

Additional Notes

  • Role involves participation in a security on-call rotation and incident response.
  • Emphasis on secure-by-default infrastructure, automated compliance evidence collection, and cloud-native detection capability deployment.