The Staff Cloud Security Engineer at LastPass will work closely with DevOps, CI/CD engineers, and the Architecture team to implement and maintain security best practices across the company's infrastructure. This role is essential in safeguarding company and user data through proactive threat research, secure architecture design, and collaboration within a high-growth, remote-first environment.
What You'll Do
- Collaborate closely with DevOps, CI/CD engineers, and Architecture team to implement and maintain security best practices across infrastructure
- Leverage expertise in security architecture to help engineers build and securely operate products and services from the ground up
- Assess, design, and implement security processes and controls to meet security, compliance, and audit requirements
- Conduct proactive research to identify emerging threats and attack vectors
- Collaborate within a highly agile product security team and across other cross-functional teams
What We're Looking For
- Proven experience working with AWS
- Proven experience collaborating closely with engineering teams and supporting their journey toward 'shifting security left'
- Hands-on experience with Infrastructure as Code (AWS CDK, CloudFormation, or Terraform)
- Working knowledge of AWS security services and features to maintain a secure production environment (e.g., AWS IAM, Config, KMS, Secrets Manager, CloudWatch, CloudTrail, GuardDuty)
- Experience with version control, build, and bug tracking systems (GitLab, GitLab CI, and Jira)
- Strong understanding of internet and computer networks (TCP/IP, TLS, VPN, etc.)
- Hands-on experience with Kubernetes and securing Kubernetes workloads on AWS EKS
- Experience securing containerized workloads (Docker)
- Collaborative team player with a hands-on, can-do attitude
- Fluency in English with excellent written and verbal communication skills
Nice to Have
- AWS Certified Security – Specialty certification or an equivalent credential
- Experience with GitOps, CSPM, KSPM, Kubernetes admission control, and supply chain security
Technical Stack
- AWS
- AWS CDK
- CloudFormation
- Terraform
- AWS IAM
- AWS Config
- AWS KMS
- AWS Secrets Manager
- CloudWatch
- CloudTrail
- GuardDuty
- GitLab
- GitLab CI
- Jira
- Kubernetes
- AWS EKS
- Docker
Team & Environment
- Product Security team working in close partnership with engineering, platform, and trust & security teams
Benefits & Compensation
- Market-leading password manager
- High-growth, collaborative environment with inclusive teams
- Remote-first culture
- Competitive compensation
- Flexible Paid Time Off policies, including but not limited to: Quarterly Self-Care Days (4 extra paid days off annually) and Volunteer Days
- Parental leave
- Comprehensive health coverage, including dependents
- Home office setup support
- LastPass Families free account for up to 5 members
- Continuous learning and development opportunities, including an annual learning stipend to invest in your growth
- Peer-to-peer recognition through Motivosity
- Employee Assistance Program for well-being support
- Remote work stipend to support your home office needs
- Short-Term or Remote-Centric Work Arrangements for added flexibility
Work Mode
Short-Term or Remote-Centric Work Arrangements for added flexibility
We’re building an inclusive community that reflects the people of all races, genders, sexual orientations, national origins, backgrounds, and perspectives who share our world.
