Staff Cloud Security Engineer

Collectors
Full_time$159k-259k/year (USD)

📍 Job Overview

  • Job Title: Staff Cloud Security Engineer
  • Company: Collectors
  • Location: US Remote - California
  • Job Type: Hybrid (On-site 3 days per week)
  • Category: Cybersecurity, Cloud Security
  • Date Posted: 2025-08-01
  • Experience Level: 10+ years
  • Remote Status: Hybrid

🚀 Role Summary

  • Key Responsibilities: Drive secure by default architectures, ensure security and integrity of infrastructure, and collaborate with product and tech teams to prevent vulnerabilities.
  • Key Technologies: AWS, GCP, Terraform, Python, cloud security testing tools, compliance frameworks (PCI, NIST, ISO, SOX).

💻 Primary Responsibilities

🔒 Security Design & Architecture

  • Security Design Reviews/Threat Models: Ensure security guardrails are integrated into platforms by conducting thorough reviews of design, implementations, and code.
  • Collaboration & Engineering Guidance: Provide proactive guidance and education to platform engineering and product teams on available security controls and their appropriate use.
  • Expertise in Cloud Security: Serve as a trusted advisor, offering cloud security expertise to enable platform engineering and product teams to make informed decisions.
  • Automated Analysis & Secure Frameworks: Scale security efforts by integrating automation for the identification, prioritization, and remediation of vulnerabilities.

🎓 Skills & Qualifications

🎯 Required Skills

  • Proven Experience: 8+ years of experience running a Cloud Security program, with a focus on securing AWS and GCP environments.
  • Terraform Proficiency: Knowledgeable about common cloud security vulnerabilities and misconfigurations in Terraform.
  • Programming Skills: Working knowledge of one or more general-purpose programming/script languages, preferably Python.
  • Problem-Solving Skills: Excellent problem-solving skills, with the ability to work independently and handle multiple tasks.
  • Security Testing Tools: Experience with cloud security testing tools and methodologies (CSPM, Penetration Testing).
  • Compliance Frameworks: Familiarity with major compliance frameworks, such as PCI, NIST, ISO, SOX, and experience assisting in audits.

🏆 Preferred Skills

  • Certifications: GCIH, CISSP, CSSLP, or any other professional or Specialty AWS certification (e.g., AWS Solutions Architect Professional or Security Specialty).
  • Bachelor's Degree: Bachelors in CS, Cybersecurity, or related fields.

📊 Compensation & Benefits

💰 Salary Range

  • Salary Range: $159,469 - $258,903 per year. Actual compensation varies based on location, job level, experience, and skill set.

🎁 Benefits

  • Health Insurance: All full-time employees are eligible to enroll in Medical, Dental, and Vision plans.
  • Additional Benefits: Full-time employees are eligible for fertility, commuter, and educational assistance benefits.
  • 401(K) Matching Plan: Collectors offers a competitive 401k matching plan to support employees' future financial goals.
  • Vacation: All salaried employees are eligible for flexible time-off.
  • Holiday Pay: All regular, full-time employees are eligible for ten company-paid holidays.
  • Employee Discounts: Employees receive discounts on select grading services for approved submissions.
  • Flexible Hours: Many teams offer flexible schedules with varying shifts and will work with you to accommodate your needs.
  • Fun Working Environment: Our team members are invited to participate in celebrations, holiday events, and team-building activities.

🎯 Team & Company Context

🏢 Company Culture

  • Industry: Collectors is the leading creator of innovative technology that provides value-added services for collectors worldwide, specializing in grading, authenticating, vaulting, and selling collectibles.
  • Company Size: Collectors employs over 1,900 people across its headquarters in Santa Ana and offices in Jersey City, Tokyo, Shanghai, Hong Kong, Toronto, Guadalajara, Dallas, and Paris.
  • Founded: 1986

🌐 Work Environment

  • Office Type: Hybrid, with a requirement to be on-site most of the time for candidates living within a 1-hour commuting distance to one of the company's offices.
  • Office Location(s): US Remote - California, with additional offices in Jersey City, Tokyo, Shanghai, Hong Kong, Toronto, Guadalajara, Dallas, and Paris.
  • Workspace Context: Collectors offers a collaborative workspace with celebrations, holiday events, and team-building activities.
  • Work Schedule: Flexible hours with varying shifts, accommodating employees' needs.

📈 Career & Growth Analysis

  • Web Technology Career Level: Staff Cloud Security Engineer, responsible for driving secure by default architectures, ensuring security and integrity of infrastructure, and collaborating with product and tech teams to prevent vulnerabilities.
  • Reporting Structure: Reports to the VP of Cybersecurity.
  • Technical Impact: Significant influence on the security and integrity of Collectors' cloud infrastructure and platforms.

🌱 Growth Opportunities

  • Technical Challenges: Staying up-to-date with the latest cloud security trends, tools, and best practices.
  • Learning & Development Opportunities: Conference attendance, certification, community involvement, technical mentorship, and leadership development.

🛠️ Technology Stack & Web Infrastructure

  • Cloud Platforms: AWS, GCP
  • Infrastructure as Code: Terraform
  • Programming Languages: Python
  • Security Testing Tools: CSPM, Penetration Testing tools
  • Compliance Frameworks: PCI, NIST, ISO, SOX

📝 Enhancement Notes

  • 📝 Enhancement Note: The salary range provided is inclusive of base salary and may include bonuses, commissions, or other forms of compensation, as detailed by the recruiter.
  • 📝 Enhancement Note: Collectors is committed to equal employment opportunity regardless of race, color, ethnicity, ancestry, religion, national origin, gender, sex, gender identity or expression, sexual orientation, age, citizenship, marital or parental status, disability, veteran status, or other class protected by applicable law.

🛠️ Application & Technical Interview Process

📝 Interview Process

  1. Technical Preparation: Brush up on cloud security fundamentals, AWS and GCP security best practices, Terraform analysis, and cloud security testing tools.
  2. Company & Culture Questions: Research Collectors' company culture, values, and recent projects to demonstrate your understanding and fit.
  3. Portfolio Presentation Strategy: Prepare a portfolio showcasing your cloud security expertise, including case studies, security assessments, and remediation strategies.

🛠️ Technical Challenge Preparation

  1. Cloud Security Fundamentals: Review cloud security best practices, secure architecture principles, and common cloud security vulnerabilities.
  2. Terraform Analysis: Familiarize yourself with Terraform analysis and common cloud security vulnerabilities and misconfigurations.
  3. Security Testing Tools: Brush up on your knowledge of cloud security testing tools and methodologies, such as CSPM and penetration testing.

🛠️ ATS Keywords

  • Cloud Security: AWS, GCP, Terraform, Python, Vulnerability Management, Compliance Frameworks, Security Testing, Incident Response, Automation, Security Guidance, Collaboration, Education, Design Reviews, Threat Modeling

📌 Application Steps

To apply for this Staff Cloud Security Engineer position:

  1. Submit your application through the application link.
  2. Tailor your resume to highlight your cloud security experience, skills, and achievements.
  3. Prepare a portfolio showcasing your cloud security expertise, including case studies, security assessments, and remediation strategies.
  4. Research Collectors' company culture, values, and recent projects to demonstrate your understanding and fit during the interview process.

Application Requirements

Candidates should have over 8 years of experience in cloud security, particularly in AWS and GCP environments, and be proficient in Terraform and programming languages like Python. Familiarity with compliance frameworks and security testing tools is also required.