Senior Cloud Security Engineer (Viator)

Deep, hands-on experience securing a production environment in AWS. Comfortable with AWS core security services (GuardDuty, Security Hub, WAF, CloudTrail). Comprehensive understanding of core AWS services (VPC networking, EC2, RDS, S3, Lambda, EKS). Strong proficiency with Terraform for managing and securing cloud infrastructure. Proven experience managing the full lifecycle of security incidents. Proficiency in at least one scripting language (Python, Go, Bash) for automation. Solid understanding of common web application vulnerabilities (OWASP Top 10).

Monitor, analyze, and investigate security alerts from AWS infrastructure, application logs, and security tooling. Lead the response to security incidents impacting the Viator application. Manage and triage vulnerabilities from bug bounty programs. Build and maintain security monitoring and alerting capabilities. Automate security operations tasks using scripting languages like Python or Go. Configure, tune, and manage security tools like WAF, AWS GuardDuty, and Security Hub. Operationalize findings from application security tools by working with engineering teams to remediate vulnerabilities. Conduct threat modeling for new features. Act as a security subject matter expert for product and engineering teams.