Cloud Security Engineer

About Us

 Sunbit builds financial technology for real life. Our technology eases the stress of paying for life’s expenses by giving people more options on how and when they pay. Founded in 2016, Sunbit offers a next-generation, no-fee credit card that can be managed through a powerful mobile app, as well as a point-of-sale payment option available at more than 16,000 service locations, including auto dealership service centers, optical practices, dentist offices, veterinary clinics, and specialty healthcare services. Sunbit was included on the 2022 Inc. 5000 list. The financial technology company has also been named as a Most Loved Workplace®, Best Point of Sale Company, and as a Top Fintech Startup by CB Insights. We use cutting-edge innovations in financial technology to bring leading data and features that allow individuals to be qualified instantly, making purchases at the point-of-sale fast, fair and easy for consumers from all walks of life. We create value focused on our core values; we work tirelessly to ensure that Sunbit becomes available to everyone, everywhere.

We invite you to #UnleashYourCuriosity and join our ever-growing R&D organization.

Check out the open positions & feel free to reach out with any questions!

What You’ll Do:

The cloud security engineer is responsible for solidifying our security posture on AWS. This role focuses on proactive security assurance and control implementation, ensuring our cloud environment remains robust against evolving threats.

Responsibilities:

• Design, implement, and continuously improve security controls for our AWS environment, adhering to industry best practices (e.g., PCI-DSS, SOC 2).
• Conduct comprehensive security assessments of our cloud infrastructure, identifying and mitigating potential vulnerabilities.
• Develop and maintain a robust security architecture leveraging native AWS security services (IAM, KMS, Security Hub etc.).
• Collaborate with the DevOps team to integrate security considerations throughout the infrastructure as code (IaC) pipelines and deployment processes.
• Define and implement security policies and procedures for secure cloud resource provisioning, access management, and data protection.
• Continuously monitor the effectiveness of security controls through automated testing and manual assessments.
• Stay updated on the latest cloud security threats and proactively adapt control strategies to mitigate emerging risks.
• Design, implement, and test Disaster Recovery (DR) plans for our AWS environment to ensure business continuity in the event of an outage.
• Support security compliance initiatives and audits, ensuring adherence to relevant security regulations.
• Maintain and document security configurations and controls for future reference and knowledge transfer.

• Bachelor's degree in computer science, information security, or a related field (or equivalent experience)
• Minimum 5 years of experience in cloud security with a focus on security assurance and controls
• AWS Certified Security – Specialty (preferred)
• In-depth understanding of security frameworks and compliance requirements (PCI-DSS, SOC 2 etc.)
• Expertise in security controls for AWS, including IAM, KMS, Security Hub, CloudTrail, and GuardDuty
• Experience with security automation tools and scripting languages (e.g., Python, Bash)
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills