Staff Cloud Security Engineer

Meet Upside:

We created Upside to transform brick-and-mortar commerce. Our technology uses the sophistication of online retail—profit measurement, attribution, and incrementality—to provide users with more value on their everyday purchases and brick-and-mortar businesses with new, profitable customers. We’ve helped millions of users earn 2 to 3 times more cashback than any other product, and hundreds of thousands of brick-and-mortar businesses earn measurable profit. Billions of dollars in commerce run through the Upside platform every year, and that value goes directly back to our retailer partners, the consumers they serve, and important sustainability initiatives.

The Impact You’ll Make:

You’ll report into the Director, Information Security and build relationships with technology stakeholders. You’ll leverage your knowledge of cloud security best practice and payment systems to identify and remediate cloud vulnerabilities. This individual contributor role will innovate for our Cloud Security team, increase our Cloud Security posture and enable our engineers to code safely.

What you’ll do:

• Innovate with AI and deliver security solutions to mitigate infrastructure vulnerabilities

• Codify IAC compliance standards in Terraform, Python and/or OPA

• Run IAC security scans and partner with engineers to fix unsafe code

• Engage technology teams to review, document and communicate risks

• Provide technical guidance and mentorship to other security engineers

• Ensure compliance with relevant security regulations and standards

• Interact with the security community and keep aware of trends

What you need:

• 6+ years of cloud security inclusive of fixing code in Terraform, Python or Java

• Deep knowledge of AWS and Lambda security architecture and AWS Control Tower

• Bachelor’s degree in Computer Science or Engineering highly preferred

• Willingness to learn, adapt, fail and grow (professional growth mindset)

• Strong understanding and adoption of AI technologies

• Background in DevSecOps and Network Engineering preferred

• Exceptional customer service and people skills

Our technology stack:

• Github Suite (Advanced Security, Actions, Copilot)

• Python

• Terraform

• AWS Lambda, DynamoDB, S3, SNS, SQS, IAM, VPCs

• ChatGPT

• Snowflake

• SQL
  

Location:

This role offers location flexibility, however, if you’re based in the Washington, D.C., Austin, Chicago, or NYC metropolitan regions, in-office attendance is required on a hybrid basis.

Compensation:

The US base salary range for this full-time position is $210,000 - $230,000 + equity + benefits. The final starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. Your recruiter can share more about the specific salary range during the hiring process.

#LI-Hybrid

#LI-NE1

Benefits:

• Medical, dental, and vision coverage starting on Day 1

• Equity (ISOs)

• 401(k) program

• Family planning programs + paid parental leave

• Physical fitness and wellness memberships

• Emotional and mental health support programs

• Unlimited PTO + 10 paid federal holidays + our annual, week-long Winter Break

• Flexible work environment

• Lunch reimbursement for in-office employees

• Employee Resource Groups

• Learning and Development stipend

• Transparent culture

• Amazing mission!

Diversity and Inclusion:

Diversity drives innovation, and our differences make us stronger. We‘re passionate about building a workplace that represents a variety of backgrounds, skills, and perspectives, and we do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Everyone is welcome here!

If there's anything we can do to support a disability or special need during your application or interview process, please email [email protected].

This email is for accessibility accommodations only, it should not be used to submit job applications.

Notice To Recruiters And Placement Agencies:

This is an in-house search with a dedicated recruiter. Please do not submit resumes to any person or email address at Upside. Upside is not liable for, and will not pay, placement fees for candidates submitted by any party or agency other than its approved recruitment partners.