Staff Cloud Security Engineer

About Engine

At Engine, we're transforming business travel into something personalized, rewarding, and simple. For too long, managing travel and spend has been overwhelming and fragmented — we're here to change that. We believe the future of travel should be seamless and powered by technology that delights customers at every step. That's why we're building a platform that brings together corporate travel, a powerful charge card, and modern spend management in one place.

To make this vision real, we're looking for exceptional, mission-driven people to help redefine how businesses manage and experience travel.

More than 30,000 companies already rely on Engine to support over 1 million travelers and billions in annual bookings each year. Cash flow positive with rapid growth, we pair exclusive Engine-only rates, industry-leading rewards, and intelligent automation to help businesses save money while delivering world-class personalization and convenience.

Backed by Telescope Partners, Blackstone, and Permira, Engine has been recognized as one of the fastest-growing travel and fintech platforms in North America, with honors including the Deloitte Fast 500 and Built In's Best Places to Work.

Staff Cloud Security Engineer

Engine is seeking a highly-skilled and motivated Staff Cloud Security Engineer to join our team. In this role, you will be a foundational member of Engine's dedicated Cloud Security function, helping secure and scale our cloud environments across AWS and GCP.

You will be responsible for hardening cloud infrastructure, reducing systemic cloud risk, improving visibility and response for cloud-originated threats, and partnering closely with infrastructure, platform, engineering, and security teams. This role requires deep technical cloud security expertise, strong architectural judgment, and the ability to influence security decisions across a fast-moving engineering organization.

As Engine's cloud footprint expands, including increased use of AWS, GCP, Terraform, and AI-enabled workloads, you will help ensure our cloud environments are secure, resilient, well-monitored, and built to scale.

Your Mission

As part of the Engine team, you'll play a vital role in an environment where innovation meets collaboration. You will drive work independently, syncing regularly to ensure quality and alignment across the following areas:

• Cloud Security Architecture & Hardening: Lead security hardening across AWS and GCP environments, including identity and access management, network segmentation, logging, monitoring, configuration hygiene, and secure cloud architecture patterns. You will help define standards that scale across teams and cloud platforms.
• Cloud Risk Ownership: Own and mature Engine's approach to identifying, prioritizing, and remediating cloud security risks. You will assess systemic risk, separate high-priority issues from low-value noise, and drive practical remediation in partnership with infrastructure and engineering teams.
• Orca Findings Management: Own the end-to-end lifecycle of Orca findings, including monitoring new alerts, triaging severity, identifying root cause, tracking remediation, and driving findings to closure with the appropriate technical owners.
• Cloud Alert Response: Serve as a primary responder for cloud-specific security alerts. You will help improve detection quality, reduce response time, and ensure cloud-originated threats are investigated and addressed effectively.
• Infrastructure-as-Code Security: Partner with teams using Terraform and related infrastructure-as-code workflows to review, improve, and harden cloud configurations before risk reaches production.
• AI Cl