Staff Cloud Security Engineer

at SentinelOne

📍 United States

USD 184,000-235,000 per year

MIDDLE

✅ Remote

Used Tools & Technologies

Not specified

Required Skills & Competences
Tag name is followed by "@" symbol and proficiency level value. About proficiency levels:

1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;

3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;

7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;

10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.

Security @ 3 Kubernetes @ 3 IaC @ 3 Terraform @ 3 GCP @ 3 AWS @ 3 Azure @ 3 Communication @ 3 Helm @ 3 CloudFormation @ 3 OAuth @ 3 Audit @ 3 AI @ 3

Details

Our Purpose

At SentinelOne, we are driven by a clear purpose: to give the advantage to those who secure our future. As AI reshapes how organizations build, operate, and innovate, the responsibility to protect them becomes more critical than ever. When you join SentinelOne, your work helps protect global enterprises, critical infrastructure, and the technologies shaping tomorrow. If you are motivated by meaningful challenges and want your impact to be real, measurable, and global, you will find purpose here.

About Us

SentinelOne is a company at the intersection of AI and security, pioneering a new operating model for cybersecurity. Our AI-native platform unifies protection across endpoint, cloud, identity, data, and AI systems to deliver autonomous detection and response with clarity and speed. By combining real-time analytics, intelligent automation, and a unified data foundation, we reduce noise, simplify complexity, and empower security teams to focus on what truly matters.

Our teams are builders, problem-solvers, and innovators committed to shaping the future of security. If you are excited to solve hard problems alongside talented, mission-driven people, we invite you to help us build a safer future for humanity.

Role summary

As a Staff Cloud Security Engineer, you will be the trusted advisor customers turn to during high-risk scenarios such as mass-deletion, ransom, or full-tenant takeover. You will work directly with output from an agentic code scanning pipeline, validate cloud exposures with human judgment, reconstruct cloud-native attack paths from logs and deployment methodologies, and present findings and remediation guidance to customers.

Responsibilities

Lead Wayfinder Frontier AI Services cloud-domain workstreams end-to-end across customer engagements, proactive reviews, compromise assessments, and post-incident hardening.
Review and triage cloud security findings from an agentic scanning pipeline: validate true positives, eliminate noise, ground exploitability in the customer's actual cloud environment, and ensure findings delivered to customers are actionable.
Conduct deep IAM, network, and identity reviews across AWS, Azure, and GCP.
Lead cloud-native attack path discovery and document exposures and remediation.
Defend findings under pressure with senior customer stakeholders; excellent written and verbal communication is required.
Maintain continuous awareness of cloud-native attack techniques, pure-cloud ransomware, Entra, Kubernetes attacks, OAuth-app abuse, and related threats.

Requirements

7+ years in cloud security or cloud-focused application/infrastructure security, with a hands-on engineering background.
Proven track record translating complex findings into technical and executive-level debriefs; excellent written and verbal communication is essential.
Deep AWS expertise: IAM, STS, Organizations, SCP, GuardDuty, CloudTrail, EKS, IRSA, and demonstrated ability to map cross-account attack paths.
Azure expertise: Entra ID, Conditional Access, RBAC, Activity Logs, Defender for Cloud, AKS, Workload Identity, including cross-tenant and hybrid-identity attack patterns.
Working knowledge in GCP: IAM, Org Policy, Audit Logs, GKE Workload Identity.
Working knowledge of cloud-native runtime security, eBPF telemetry, container runtime behavior, and how to spot anomalous workload activity.
Kubernetes security at depth (RBAC, admission control, OPA/Gatekeeper, PSS) and IaC review experience across Terraform, Helm, CloudFormation, and Bicep.
Comfortable triaging output from AI-assisted cloud-posture and attack-path tools; able to separate risk from noise.
Cloud incident response and log forensics experience across at least two major cloud providers.

Benefits

Equity & Rewards

Restricted Stock Units (RSUs)
Employee Stock Purchase Plan (ESPP)

Time Off & Wellbeing

Flexible time off
Paid company holidays and paid sick time
Gender-neutral parental leave
Grandparent leave

Insurance & Financial Security

Medical, dental, and vision coverage
401(k) retirement plan with company match
Life and disability insurance
Health and dependent care FSA
Voluntary benefits (hospital, accident, critical illness)
Employee Assistance Program (EAP)
ARAG pre-paid legal
Nationwide pet insurance
Cancer Care program
Global business travel medical insurance

Work Perks & Flexibility

Home office allowance
Mobile phone reimbursement

Wellness & Lifestyle

Wellness coach
Wellness/gym reimbursement
Fertility coverage
Adoption & surrogacy reimbursement

Compensation and additional notes

This U.S. role has a base pay range that will vary based on the location of the candidate. For some locations, a different pay range may apply and will be provided during the recruiting process. Base Salary Range: $184,000—$235,000 USD.

SentinelOne participates in the E-Verify Program for all U.S. based roles.