Listing Description

Description

Postman is looking for a Cloud Security Lead to join the Application Security team. This position is responsible for ensuring the security and compliance of our organization's cloud infrastructure, services, and applications. This individual will lead the development, implementation, and management of cloud security policies, procedures, and controls to protect our organization's data, systems, and assets. The Cloud Security Lead will collaborate with the broader security team and engineering functions to provide guidance, best practices, and training to ensure the secure adoption of cloud services and to identify and remediate security risks.

What you get to do every day

• 
  

  Lead initiatives that provide tangible improvements to our cloud security posture

  
  


• 
  

  Work with various stakeholders to identify security processes that can be automated and build out these capabilities

  
  


• 
  

  Develop, implement, and manage cloud security policies, procedures, and controls to protect the organization's cloud infrastructure, services, and applications

  
  


• 
  

  Lead the implementation and operation of cloud security tools, technologies, and processes to ensure we meet our security requirements

  
  


• 
  

  Write and review technical proposals, architectural diagrams, application code and cloud formation

  
  


• 
  

  Leverage native cloud technologies and best practices to build secure by default environments

  
  


• 
  

  Identify design and configuration flaws in our cloud infrastructure that could be exploited by bad actors and provide strategic solutions to prioritise and mitigate these weaknesses and vulnerabilities

  
  


• 
  

  Participate in incident response activities and provide guidance and support to remediate security incidents and breaches.

  
  

What you bring to the role

• 
  

  You have 5+ years of experience in cloud security and have demonstrable experience architecting, securing, provisioning, maintaining and debugging in multi-account AWS environments

  
  


• 
  

  Demonstrated skills and experience in cloud security engineering, automation of infrastructure, coding & scripting, and developing policies and guidelines

  
  


• 
  

  Technical expertise in cloud security tools within AWS as well as 3rd party cloud security tools like CNAPP, CSPM, CASBs etc., and experience with scripting languages (Cloudformation or Terraform, Python, Node.js etc)

  
  


• 
  

  Experience leading initiatives that have measurably improved the security of cloud environments

  
  


• 
  

  Strong understanding of container and container orchestration best practices using Kubernetes, EKS, ECS etc

  
  


• 
  

  Ability to effectively communicate with business stakeholders and technical leadership groups would be essential

  
  


• 
  

  Demonstrated success in leading technical and delivery teams in the adoption of secure guardrails and best practices is highly desirable

  
  


• 
  

  Relevant certifications such as Certified Cloud Security Professional (CCSP), or AWS certifications are a plus.

  
  


• 
  

  A real passion to constantly improve and uplift the security of existing platforms

  
  

Our Values

At Postman, we create with the same curiosity that we see in our users. We value transparency and honest communication about not only successes, but also failures. In our work, we focus on specific goals that add up to a larger vision. Our inclusive work culture ensures that everyone is valued equally as important pieces of our final product. We are dedicated to delivering the best products we can.

What Else?

We offer competitive salary and benefits, and a flexible schedule working with a fun, collaborative team. Enjoy full medical coverage, unlimited PTO, and a monthly lunch stipend. Yes, seriously. We want you to eat well wherever you’re at.) Plus, our wellness program will help you stay healthy from your location with fitness-related reimbursements. Our frequent and fascinating virtual team-building events will keep you connected, while our donation-matching program can support the causes you care about. We’re building a long-term company with an inclusive culture where everyone can be the best version of themselves, and we want you to be part of it. This position requires you to be present in our Bangalore office on Mondays,Wednesdays & Fridays.