Join. Grow. Lead the Future of Supply Chain. At Cleo, we don’t just integrate supply chains—we orchestrate them. As the pioneer and global leader of the Supply Chain Orchestration software category, Cleo is helping thousands of companies around the globe drive transformation, deliver excellence, and shape the future of their global operations. Whether you're joining us from outside or growing within, Cleo is your platform to lead with purpose, innovate with impact, and thrive in a culture that champions your growth. Why Join Us? Strategic Influence: Be at the helm of global supply chain strategy, driving decisions that impact customers, partners, and communities worldwide. Innovation-Driven Culture: Work with the latest in AI, automation, and digital supply chain platforms to solve complex challenges. End-to-End Visibility: Lead across planning, sourcing, logistics, and fulfillment—connecting dots others can’t see. Sustainability at the Core: Help build ethical, transparent, and sustainable supply chains that make a difference. Why Grow with Us? Leadership Development: Access world-class programs, executive mentorship, and rotational opportunities to accelerate your career. Internal Mobility: We prioritize internal talent—your next big opportunity could be just one conversation away. Recognition & Impact: Your ideas matter. Your leadership is visible. Your success is celebrated. Inclusive Community: Thrive in a diverse, collaborative environment where every voice is heard and respected. Our Promise We are a top talent destination for supply chain leaders technology who want to make bold moves, solve real-world problems, and grow without limits. Whether you’re stepping into your first leadership role or scaling new heights, your journey starts here. Cleo … never stops

Cloud Security Lead

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 500Since 1976Company Site

Location

United States

Posted

2 days ago

Salary

$130K - $150K / year

Seniority

Senior

Bachelor Degree9 yrs expEnglishAWSCI/CDTerraform

Job Description

Cleo is seeking a Lead Cloud Security Engineer to design, implement, and continuously improve security controls across our cloud infrastructure and SaaS environments.
This role is responsible for strengthening Cleo's AWS security posture, embedding secure-by-default cloud guardrails, and partnering closely with Platform and Engineering teams to reduce infrastructure risk without slowing innovation.
The ideal candidate is hands-on, technically deep in AWS, and experienced in building scalable cloud security capabilities in a high-growth SaaS environment.
What You Will Be Doing
Cloud Security Architecture

Design and implement secure cloud architecture patterns
Establish guardrails for AWS accounts and services
Strengthen multi-account strategy and segmentation
Improve IAM design, permission boundaries, and least-privilege models
Review major infrastructure changes for security impact

Cloud Detection and Visibility

Implement and tune cloud-native detection capabilities
Integrate AWS security services into centralized monitoring
Identify misconfigurations and excessive permissions
Improve signal-to-noise ratio in cloud alerts

Infrastructure as Code Security

Embed security controls into Terraform or other IaC workflows
Enforce policy-as-code guardrails
Ensure IaC scanning is integrated into CI/CD pipelines
Reduce configuration drift across environments

Vulnerability and Configuration Management

Oversee cloud misconfiguration detection and remediation
Track infrastructure vulnerability exposure
Reduce critical vulnerability exposure window
Partner with Platform teams to automate remediation

Data Protection and Encryption

Ensure proper encryption standards across storage and databases
Manage KMS usage and key lifecycle best practices
Strengthen logging and monitoring coverage

Incident Response Support

Lead cloud-focused investigations during security incidents
Improve forensic readiness in AWS
Harden logging and evidence retention practices

Automation and Continuous Improvement

Automate guardrails and enforcement mechanisms
Improve developer experience with secure cloud defaults
Reduce manual cloud security reviews
Optimizing tooling cost and effectiveness

Metrics and Reporting

Define KPIs for cloud security posture
Report on misconfiguration trends and exposure windows
Provide executive-level reporting on infrastructure risk
Support audit and compliance evidence collection

Your Qualifications
Required

7+ years of experience in cloud security, cloud engineering, or infrastructure security
Deep expertise in AWS architecture and services
Strong understanding of IAM design and least-privilege principles
Experience with Infrastructure as Code and CI/CD integration
Experience implementing cloud-native detection and monitoring
Ability to translate infrastructure risk into business impact

Preferred

Experience in mid-market or high-growth SaaS environments
Experience supporting SOC 2 or similar audits
Familiarity with policy-as-code frameworks
Experience building multi-account AWS environments
Relevant certifications such as AWS Security Specialty, CISSP, or equivalent

A few things we have to offer:

$130,000 to $150,000 base salary + bonus opportunity
Great Healthcare + Dental + Vision
Flexible PTO
Culture of support, encouraging Life-Work balance
401k match
FSA and HSA options
Employee Assistance Program
Paid Parental Leave
Representing a company with 4,000+ clients and a 99% retention rate
Accelerated title and salary growth potential
A fun and energetic work environment that makes you excited to go to work every day

Benefits

401(K), 401(K) matching, Childcare benefits, Company-sponsored outings, Customized development tracks, Dental insurance, Disability insurance, Documented equal pay policy, Volunteer in local community, Family medical leave, Flexible Spending Account (FSA), Flexible work schedule, Generous parental leave, Company-sponsored happy hours, Health insurance, Job training & conferences, Open door policy, Life insurance, Paid volunteer time, Online course subscriptions available, Onsite gym, Open office floor plan, Paid holidays, Paid industry certifications, Paid sick days, Onsite office parking, Partners with nonprofits, Performance bonus, Promote from within, Recreational clubs, Lunch and learns, Remote work program, Free snacks and drinks, Team based strategic planning, Mandated unconscious bias training, Unlimited vacation policy, Vision insurance, Some meals provided, Mental health benefits, Home-office stipend for remote employees, Hiring practices that promote diversity, Employee resource groups, Quarterly engagement surveys, Hybrid work model, In-person revenue kickoff, President's club, Employee awards, Mother's room, Apprenticeship programs, Flexible time off, Bereavement leave benefits