Rogo · 1 day ago
Cloud Security Engineer
New York, NY
Full-time
Onsite
Senior Level
5+ years expRogo is building Wall Street's first true AI analyst, aiming to empower finance professionals with AI that enhances speed, accuracy, and insight. The Cloud Security Engineer will lead the design and implementation of cloud security architecture across AWS and GCP, focusing on secure systems design, automation, and hands-on problem-solving.
AnalyticsArtificial Intelligence (AI)Business IntelligenceFinancial ServicesFinTechGenerative AI
Responsibilities
Architect and implement cloud security foundations across AWS and GCP, including account/project structure, IAM models, network segmentation, and secure service-to-service communication
Own and author Terraform-based security architecture, including: Reusable, opinionated Terraform modules for IAM, networking, logging, and encryption; Policy enforcement and guardrails that prevent insecure infrastructure from being deployed; Secure defaults embedded directly into infrastructure primitives
Design and operate cloud identity systems at scale, including workload identity, service accounts, role assumption, and cross-cloud access patterns
Lead the security design of cloud networking, including VPC architecture, private connectivity, egress control, firewalling, and isolation boundaries
Build and maintain security automation across CI/CD and cloud environments, eliminating manual processes and reducing operational risk
Own Kubernetes and container security for production workloads (GKE/EKS), including cluster hardening, RBAC, workload identity, image security, and runtime controls
Define and implement logging, monitoring, and detection pipelines that provide high-signal visibility into cloud security posture and incidents
Perform threat modeling and architectural reviews for new infrastructure and platform changes, driving security decisions with technical authority
Act as a technical multiplier: reviewing critical infrastructure changes, mentoring engineers, and raising the overall security bar across the organization
Qualification
Required
Lead the design and implementation of cloud security architecture across AWS and GCP
Built and operated secure cloud platforms at scale
Solve security problems through code, systems design, and automation
Design secure primitives
Author Terraform at scale
Shape identity and network architecture
Embed security into the core platform
Operate as a senior technical leader while remaining highly tactical
Write production code
Review infrastructure changes
Unblock teams with pragmatic security solutions
Architect and implement cloud security foundations across AWS and GCP, including account/project structure, IAM models, network segmentation, and secure service-to-service communication
Own and author Terraform-based security architecture, including reusable, opinionated Terraform modules for IAM, networking, logging, and encryption
Implement policy enforcement and guardrails that prevent insecure infrastructure from being deployed
Embed secure defaults directly into infrastructure primitives
Design and operate cloud identity systems at scale, including workload identity, service accounts, role assumption, and cross-cloud access patterns
Lead the security design of cloud networking, including VPC architecture, private connectivity, egress control, firewalling, and isolation boundaries
Build and maintain security automation across CI/CD and cloud environments
Own Kubernetes and container security for production workloads (GKE/EKS), including cluster hardening, RBAC, workload identity, image security, and runtime controls
Define and implement logging, monitoring, and detection pipelines that provide high-signal visibility into cloud security posture and incidents
Perform threat modeling and architectural reviews for new infrastructure and platform changes
Drive security decisions with technical authority
Act as a technical multiplier: reviewing critical infrastructure changes, mentoring engineers, and raising the overall security bar across the organization
Preferred
Have built cloud security platforms or foundational infrastructure in AWS and GCP, not just consumed managed services
Are deeply fluent in Terraform, including large-scale state management, module design, and safe rollout strategies
Think in terms of secure systems and primitives, not one-off controls or point solutions
Have strong opinions on cloud IAM and networking design, informed by real-world failures and incident response
Are comfortable operating in ambiguous environments and defining long-term technical direction
Prefer automation, code, and guardrails over documentation and manual review
Can influence architecture through technical depth rather than organizational authority
Company
Rogo
Rogo is a secure Generative AI platform purpose-built for elite financial institutions.
51-200 employees
H1B Sponsorship
Rogo has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2024 (2)
Funding
Current Stage
Growth StageTotal Funding
$79MKey Investors
Sequoia CapitalThrive CapitalKhosla Ventures
2025-10-28Series Unknown
2025-04-30Series B· $50M
2024-10-01Series A· $18.5M
Leadership Team
Gabriel Stengel
CEO / Founder
John Willett
Co-Founder & COO
Recent News
Crowdfund Insider
2025-10-31
2025-10-14
FinTech Global
2025-09-12
Company data provided by crunchbase