Apply on Employer Site

Wilson Sonsini Goodrich & Rosati · 18 hours ago

Principal Cloud Security Engineer

Austin, TX

Full-time

Hybrid

Senior Level, Lead/Staff

$147K/yr - $199K/yr

8+ years exp

Wilson Sonsini Goodrich & Rosati is a premier legal advisor to technology and life sciences enterprises worldwide. The Principal Cloud Security Engineer role is responsible for leading the architecture of secure cloud infrastructures and requires deep technical knowledge of cloud computing and cybersecurity best practices.

FinanceFinTechIntellectual PropertyLegalPrivacy

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Architect and articulate a scalable and resilient vision for secure public, private and hybrid clouds

Lead security architecture design with SaaS, PaaS and IaaS

Provide guidance and direction on secure design, build, testing and deployment across cloud infrastructure

Collaborate with security, architecture and engineering leadership to support business objectives

Identify and enforce enterprise standards to support secure, resilient and compliant solutions

Serve as a subject matter expert and escalation point of contact for problem resolution, including incident response

Able to perform testing and evaluations of security controls and device configuration/security

Secure container platforms and workloads from build through runtime

Design automated security controls, guardrails, and pipelines (IaC scanning, CI/CD integration, deployment-time policy enforcement)

Advise on identity and access management best practices: Azure AD, role-based access control, managed identities, conditional access, and least privilege

In coordination with infrastructure peers, define and monitor network segmentation, private connectivity, and secure service-to-service communication patterns

Lead architecture reviews for cloud-native applications and infrastructure

Monitor, detect, and respond to security incidents affecting cloud and container environments; integrate cloud-native logging and SIEM tools

Establish configuration management, and hardening standards as applicable

Stay current with cybersecurity threats, AI, risks and vulnerabilities with potential impact to services

Mentor and coach staff on secure development, cloud security patterns, container security, and operational best practices

Evaluate, pilot, and operate cloud security tools and managed services (CNAPP, CSPM, CWPP, vulnerability scanners, WAF, API security)

Collaborate on budgeting, procurement, and lifecycle management of cloud security tooling and services

Qualification

Cloud security architectureAzureAWS securityContainer securityIdentityAccess managementVulnerability managementScripting/automation skillsCybersecurity best practicesSecurity incident responseExceptional communicationStrategic thinkingSelf-starterCollaboration skills

Required

Bachelor's degree preferred

Eight years minimum experience securing an enterprise environment

Hands-on experience securing Azure and AWS environments

Experience securing container platforms and orchestration: container image hardening, runtime security, network policies, and service mesh considerations

Experience with cloud-native detection and monitoring: designing logging, alerts, and playbooks; working with SIEMs and SOAR

Knowledge of application and data protection mechanisms: encryption at rest/in transit, key management, secret management patterns

Strong understanding of identity and authentication protocols (OAuth2, OIDC, SAML) and secure API authentication/authorization

Experience with vulnerability management for cloud infrastructure and container images; patch management strategies

Solid scripting/automation skills (PowerShell, Python, Bash) and familiarity with APIs/SDKs for automation

Knowledge and experience in using and managing Unix/Linux

Proven track record conducting security architecture reviews

Exceptional communication skills with the ability to explain technical issues to engineers and non-technical stakeholders

Strategic thinker with a pragmatic, risk-based approach to security decisions

Self-starter who takes ownership and drives initiatives to completion

Comfortable in fast-paced, agile environments and able to balance strategic projects with operational response

Preferred

Experience with CNAPP/CSPM/CWPP tools

Experience with Zero Trust architectures and implementing micro-segmentation

Strong collaborator and influencer; able to build consensus across engineering and product teams

Benefits

The compensation for this position may include a discretionary year-end merit bonus based on performance.

We offer a highly competitive salary and benefits package.

Company

Wilson Sonsini Goodrich & Rosati

Glassdoor4.3

Wilson Sonsini Goodrich & Rosati provides legal services for technology, life sciences, and other growth enterprises.

Founded in 1961

Palo Alto, California, USA

1001-5000 employees

http://www.wsgr.com

H1B Sponsorship

Wilson Sonsini Goodrich & Rosati has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (13)

2024 (16)

2023 (17)

2022 (20)

2021 (24)

2020 (42)