• You’ll lead and execute cloud security initiatives that strengthen Webflow’s infrastructure and operational security posture. Responsibilities are grouped by scope and impact. • Perform infrastructure security reviews across cloud services, network design, IAM, and platform components. • Design, implement, and maintain secure AWS and GCP infrastructure following best practices (least privilege, network segmentation, encryption, monitoring). • Partner with infrastructure and platform teams to embed security controls in CI/CD pipelines, infrastructure as code, and containerized environments. • Own the cloud security posture management (CSPM) strategy, ensuring continuous compliance and automated detection of misconfigurations. • Collaborate with engineering teams to secure Kubernetes and containerized workloads, ensuring adherence to runtime and image scanning policies. • Respond to and investigate cloud-related security incidents, providing technical expertise during triage and remediation. • Contribute to the design and execution of Webflow’s cloud security roadmap, identifying areas for automation and scalability. • Conduct threat modeling and risk assessments for cloud architecture and new service deployments. • Translate raw findings into actionable engineering fixes, not just tickets or reports. • Design and build internal security services, APIs, and tools that automate infrastructure vulnerability detection, triage, reporting, and remediation. • Develop security automation that integrates with CI/CD, cloud control planes, and developer workflows to shift detection and remediation earlier in the lifecycle. • Experiment with and operationalize agentic and AI-assisted approaches to security detection, analysis, and response as the threat landscape evolves.