Security Cloud Architect

Security Cloud Architect page is loaded## Security Cloud Architectlocations: Brazil Sao Paulo - Remote Officetime type: Full timeposted on: Posted Todayjob requisition id: R20345## Job SummaryWEX, Inc. is looking for a Security Architect with a focus on cloud security posture management CSPM and infrastructure-as-code IaC security. This individual is responsible for the continuous assessment and validation of security configurations across our multi-cloud AWS, Azure, GCP and Kubernetes environments. You will ensure security policies are correctly applied and identify configuration drift using automated tooling to reduce the organization’s attack surface.****About the Team & Role****We’re the Global Information Security Team at WEX, responsible for implementing and operating security technologies and processes throughout WEX. We partner closely with internal teams and customers to assure WEX operates in a secure and compliant manner. Our team holds itself to a high-standard and we collaborate closely with one another to ensure strong, reliable and effective relationships. We own our results and we take pride of ownership in everything we do.Changing the world isn’t easy, and we have a lot of work ahead of us. From securing applications, data centers and cloud resources, we’ve got more work than we can handle and we’re looking for great people to come along for the ride. ****How you’ll make an impact***** Cloud Security Posture Management (CSPM): Operate and tune the organization’s CSPM platforms to provide continuous visibility into the security posture of cloud accounts and Kubernetes clusters.* IaC Security & Automation: Manage and utilize IaC scanning tools (e.g., Checkov, Terrascan) within CI/CD pipelines to identify and remediate risks before they reach production.* Design Validation & Standardization: Conduct technical design reviews for cloud solutions to ensure they adhere to multi-cloud security reference architectures and IaaS/PaaS security baselines.* Remediation & Code Fixes: Work directly with DevOps teams to propose code-level fixes (Pull Requests) for non-compliant Terraform or CloudFormation templates.* Container Security Support: Collaborate with the other security team members to interpret vulnerability findings and align remediation priorities for image and registry scanning.* Continuous Monitoring: Conduct regular security health checks on high-risk environments and track remediation efforts to resolution.****Experience you’ll bring***** Are a Subject Matter Expert in cloud-native security controls across multiple providers AWS, Azure, and/or GCP.* Have deep experience with Infrastructure-as-Code (Terraform, CloudFormation) and how to secure it through automated scanning.* Understand the security nuances of Kubernetes and containerized workloads.* Can deliver actionable security guidance that bridges the gap between a high-level security policy and a low-level technical implementation.* Write comprehensive reports and remediation plans based on CSPM and IaC assessment findings.* Have solid progressive experience in information security, cloud engineering, or systems administration.* Hands-on experience with native security controls in multi-account cloud environments.* Have some experience with CSPM tools and IaC scanning technologies.* Are proficient in reviewing and troubleshooting Infrastructure-as-Code (Terraform or similar).* Have a strong, practical understanding of CI/CD pipelines and how to integrate security gates within them.* Have excellent communication skills, both written and verbal.*It would be nice if you have:** Experience or strong interest in Cloud and Kubernetes penetration testing or adversarial simulation.* Experience contributing to Service Control Policies (SCPs) or cloud-wide governance policies.* Relevant cloud security certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer, or GCP Professional Cloud Security Engineer).* Proficiency in scripting (Python, Go, or Bash) for security automation.WEX is a global commerce platform that helps businesses solve for operational complexities like employee benefits, managing and mobilizing fleets, and streamlining payments.With over 6,500 employees, we work with large and small companies in more than 200 countries and territories, and can tailor our services to meet the unique needs of their businesses.We hire people who share our passion for continuous innovation and client service that is unparalleled in the industry. Offering comprehensive and market competitive benefits, our offerings are designed to support your personal and professional well-being. If you’re looking for a growing career - come be part of WEX today. To learn more about our employee benefits, please .WEX is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, sexual orientation, gender identity, protected veteran status, disability or other protected status. WEX promotes a drug-free workplace.Qualified individuals with a disability have the right to request a reasonable accommodation. If you require a reasonable accommodation as a result of your disability at any point in the job application process, please submit your request through our .This form is for accommodation requests only and cannot be used to inquire about the status of applications.#J-18808-Ljbffr