Cloud Security Operations Engineer, REMOTE, 12+ Months

Cloud Security Operations Engineer

Duration: 12+ Months

Rate: Open

Location: REMOTE

Must have strong vulnerability experience. 

About the Role
We’re seeking a Cloud Security Operations Engineer to join the Cloud Security Operations team at PayPal. This role is a critical part of our centralized security organization, supporting cloud security initiatives across multiple business units. You’ll work hands-on with cloud infrastructure, security tooling, and cross-functional teams to strengthen and maintain our cloud security posture.

What You’ll Do

• Security Operations: Manage L3 security tickets, investigate cloud security incidents, and participate in the on-call rotation.
• CSPM Remediation: Triage and remediate cloud misconfigurations identified via CSPM platforms.
• Metrics & Compliance: Track and report SLA metrics to ensure security compliance across all cloud environments.
• Program Development: Create and implement operational programs, runbooks, and SOPs to scale security operations.
• Tool Optimization: Align security tools with cloud service patterns and architectural best practices across AWS, Azure, and Google Cloud Platform.
• Security Reviews: Support technical assessments of cloud architectures, IaC, and deployment pipelines.
• Cross-Team Collaboration: Work closely with engineering, business unit security leads, and platform teams to drive continual security improvements.

Required Qualifications

• Cloud Platform Experience: 3+ years with AWS, Azure, or Google Cloud Platform, including compute, storage, networking, and identity services.
• Operational Background: Experience in security operations or incident response, with the ability to manage tickets, meet SLAs, and participate in on-call rotations.
• Programming Skills: Proficiency in Python, Go, or similar languages for automation and tooling.
• Distributed Systems: Strong understanding of distributed systems, microservices, and cloud-native patterns.
• Security Fundamentals: Solid grasp of security principles, common cloud vulnerabilities, and best practices.

Preferred Qualifications

• Experience with CSPM tools (Wiz, Prisma Cloud, etc.)
• Multi-cloud experience (AWS, Azure, Google Cloud Platform)
• Knowledge of IaC tools (Terraform, CloudFormation, ARM)
• Experience with Kubernetes, Docker, and container security
• Familiarity with compliance frameworks (PCI-DSS, SOC 2, ISO 27001)
• Understanding of service mesh, workload identity, and zero trust models

Technical Skills

• Cloud Platforms: AWS, Azure, Google Cloud Platform
• Programming: Python, Go, Bash
• Security Tools: CSPM, SIEM, vulnerability scanners
• Cloud-Native: Containers, microservices, serverless
• Networking: VPCs, security groups, segmentation

What Makes You Successful

• Analytical Problem-Solver: You design scalable, effective solutions to security challenges.
• Operational Excellence: You thrive in fast-paced environments with high-quality standards.
• Strong Collaborator: You communicate clearly across technical and non-technical teams.
• Continuous Learner: You stay current with evolving cloud technologies and threats.
• Ownership Mindset: You follow through, take initiative, and drive improvements.

Top 3 Must-Have Skills (Ranked)

1. Cloud Security Expertise: Hands-on cloud security experience (AWS, Azure, Google Cloud Platform) with strong cloud-native security knowledge.
2. Operational Experience: Background in security operations or incident response, including ticket management and SLA adherence.
3. Collaboration & Communication: Ability to work cross-functionally and communicate clearly with diverse stakeholders.