Cloud Security Engineer

About Virtru:

Virtru is a leading data protection provider backed by some of the foremost venture capital firms in Silicon Valley and the Mid-Atlantic region, including Iconiq Capital, Bessemer Venture Partners, Foundry Capital, and Tiger Global. Today, more than ever, data demands respect, and that’s why Virtru is committed to changing the rules for data privacy. At Virtru, we equip our customers to take granular control of their data—everywhere it’s shared—through end-to-end encryption for Google, Microsoft, and other data sharing platforms. Our market-leading portfolio of data encryption and privacy enhancing applications are remarkably easy to use, fast to implement, affordable for all, and built on the Trusted Data Format (TDF) open standard.

At Virtru, our motto is "Respect the people. Respect the data." Respecting data to us means keeping it secure and protected at all times across its entire lifecycle. We firmly believe that when you respect data, you’re demonstrating respect for the people who own that data.

Working at Virtru, you'll be inspired by colleagues who are passionate about the work they do. We are dedicated to creating an atmosphere that sparks creativity, connection, and professional growth while empowering each other to do our best work. We're building something special at Virtru. We hope you consider joining our team and helping us create a brighter future for data privacy.

Compensation: $150,000 - 200,000/year

Virtru | Washington, District of Columbia, United States (Remote)

 

Our technical teams are growing!  We are seeking a Cloud Security Engineer who is dedicated to high quality production using (but not limited to) javascript, java, Python, and Go for Virtru's digital privacy products. The ideal candidate will have a natural passion for digital privacy, software development, and great user experiences.  You’ll have the opportunity to work with a stellar team of passionate Engineers who are collaborative, cohesive, and dedicated to producing high-quality results.  We encourage curiosity and have a culture that encourages growth.  As an Engineer on this team, you will be on the cutting edge of Zero-Trust - the future of data and service protection!

 

Here at Virtru you'll join an innovative team that is establishing a cloud native data security platform. Our software is undergoing a transformation and your contributions will help us implement and maintain robust security controls for Virtru products across our internal GCP and AWS infrastructure, externally to our customers through cloud marketplaces, and within the open source community edition of our platform and public Helm charts.

 

Our cloud native stack includes CNCF technologies like Kubernetes, ArgoCD, Istio, Kyverno, Terraform & Atlantis, Ansible, GitHub Actions, and Datadog. We have established security patterns and need help implementing and enhancing them throughout our polyglot microservice ecosystem. We also have exciting security R&D opportunities on the horizon with improvements to our service mesh security, implementing zero-trust architectures, enhancing our threat detection capabilities, automation of compliance controls, and establishing secure deployment patterns across multicloud environments.

As a Cloud Security Engineer Your Responsibilities Include:

• Lead security compliance initiatives and automation of control validation across our cloud environments using Infrastructure as Code (Terraform, Ansible)
• Build security automation for CI/CD pipelines, including vulnerability scanning and compliance validation
• Conduct regular security reviews and risk assessments of cloud infrastructure and applications
• Collaborate with development and operations teams to implement security controls without impeding velocity
• Develop and maintain security monitoring solutions and respond to security events
• Create and maintain security documentation, training, and guidelines for engineering teams

 

Skills That Will Help You Thrive:

• Demonstrated experience implementing security controls in GCP and/or AWS environments
• Deep understanding of cloud security architecture and best practices, including container and Kubernetes networking security
• Proficiency in security automation using Terraform and/or Ansible, and languages like Go, Python, or Node.js
• Strong knowledge of common compliance frameworks and how to implement technical controls to meet requirements
• Experience with infrastructure scanning tools and security monitoring solutions (ie CNAP, SIEM, CSPM, CWPP)
• Strong incident response skills, security troubleshooting experience and comfortable being On Call
• Clear and effective communication skills, with the ability to articulate security concepts to both technical and non-technical audiences
• A passion for continuously improving security posture and staying current with emerging threats
• Comfortable participating in annual assessments, security control reviews, and audits

 

Preferences & Bonus items:

• Security certifications (CISSP, CCSP, AWS/GCP security certifications)
• Experience implementing security controls for SOC 2, PCI, HIPAA, or FedRAMP compliance
• Knowledge of threat modeling and secure architecture design
• Experience with security tools like Prismacloud, Wiz, Sysdig, or Aqua Security
• Familiarity with service mesh security (Istio)
• Background in DevSecOps practices and tooling
• Experience with security event monitoring and SIEM solutions
• Public cloud marketplace security validation experience
• Multicloud security controls implementation

 

Virtruvian qualities that will set you up for success:

• Thinking outside of the box to respectfully challenge your teammates and managers in the pursuit of excellence
• Strong sense of urgency with an action-oriented mindset
• Able to collaborate and adapt to shifting priorities as business needs evolve
• Comfortable with asynchronous communication including slack, email, zoom, etc.

 

PERKS & BENEFITS

At Virtru, we believe people do their best work when their wellbeing is put first. This is why we make your wellbeing our priority with a thoughtful and holistic program that encompasses Occupational, Mental, Social, Physical, and Environmental Wellness by offering benefits such as…

• A Remote-First Approach — Virtru is committed to being forever flexible when it comes to where, how, and when you get your work done. You have the option to work from home if that suits you best, or work from our DC Headquarters if you prefer being in person!
• A Flexible PTO policy — we strongly encourage you to take time off (in addition to 12 federal holidays) to ensure that you are getting the proper time needed to unplug and recharge.
• A $1,500 annual Learning & Development Stipend focused on providing you the resources to continually learn and professionally grow.
• Internal mobility options for those interested in exploring their skills in other areas of the business
• Frequent company-sponsored Team Celebrations that provide ample opportunities to connect with teammates and be social!
• Access to an Employee Assistance Program.
• Access to Headspace, a mental health app tailored to your specific needs.
• A high degree of flexibility — Have an appointment, errand, or family emergency to take care of? Hop to it! We give you the time and space to take care of you and your own first.

In addition to wellbeing, Virtru places a strong emphasis on diversity, equity, inclusion, and belonging. Our DE&I Council is dedicated to fostering an inclusive workplace and making the psychological safety of each and every one of our teammates a top priority. The Council also hosts a range of events throughout the year focused on the continual education of our teammates on social justice issues, current events, and marginalized cultures and communities. 

Additional perks include: 

• Competitive compensation
• Generous parental, medical, and bereavement policies
• Uncapped commissions for Sales roles
• 401K Contribution and stock options
• Full medical, dental, and vision benefits
• Annual Winter Hackathons and Summer “InnoVation Weeks” (in-person optional)
• New Hire Swag and IT Welcome boxes
• Structured semi-annual 360° performance reviews
• Transparency is at the core of how we operate and everything we do! 

Virtru is currently operating in a remote-first capacity; however, there are plenty of opportunities to connect with the team in person throughout the year, both in and out of the office, whether they be team-specific or company-wide celebrations and events.

 

Virtru is committed to building an inclusive environment for people of all backgrounds and everyone is encouraged to apply. Virtru is an Equal Opportunity Employer and does not discriminate on the basis of race, color, gender, sexual orientation, gender identity or expression, religion, disability, national origin, protected veteran status, age, or any other status protected by applicable national, federal, state, or local law.