Cloud Security Engineer

Job description

Building the Future of Crypto

Our Krakenites are a world-class team with crypto conviction, united by our desire to discover and unlock the potential of crypto and blockchain technology.

What makes us different?

Kraken is a mission-focused company rooted in crypto values. As a Krakenite, you’ll join us on our mission to accelerate the global adoption of crypto, so that everyone can achieve financial freedom and inclusion. For over a decade, Kraken’s focus on our mission and crypto ethos has attracted many of the most talented crypto experts in the world.

Before you apply, please read the Kraken Culture page to learn more about our internal culture, values, and mission. We also expect candidates to familiarize themselves with the Kraken app. Learn how to create a Kraken account here.

As a fully remote company, we have Krakenites in 70+ countries who speak over 50 languages. Krakenites are industry pioneers who develop premium crypto products for experienced traders, institutions, and newcomers to the space. Kraken is committed to industry-leading security, crypto education, and world-class client support through our products like Kraken Pro, Desktop, Wallet, and Kraken Futures.

Become a Krakenite and build the future of crypto!

Proof of work

The team

Cloud Security at Kraken is about designing guardrails that scale. We embed security into every layer of our stack - without getting in the way of growth, speed, or innovation. Our team is deeply technical, outcome-driven, and wired for collaboration across the business.

We work hands-on across AWS, GCP, and other cloud platforms - building tools, designing controls, and automating security into our infrastructure. Our goal is to make the secure choice the easy route for engineers. You’ll be architecting the solutions that protect our platforms, our customers, and our edge.

As a Cloud Security Engineer, you’ll take ownership of how we secure the cloud infrastructure that powers Kraken’s global platform. This is a hands-on engineering role focused on building and integrating controls that enable teams to move fast without compromising security.

You’ll work closely with product and engineering teams across the company, helping them integrate secure practices into the platforms they build and operate. Your day-to-day will involve everything from shaping IAM strategy to improving cloud visibility, refining detection signals, and helping teams close the gaps that matter most.

The opportunity

• Design, implement, and manage security controls across AWS and GCP environments

• Work across the security organization to support incident response, threat detection, compliance, and security reviews in cloud environments

• Partner with development teams to identify risks and help implement effective mitigations

• Identify and assess cloud risks, prioritize them, and lead remediation through automation or policy

• Improve operational efficiency by reducing friction between security and delivery

• Implement and improve IAM controls to ensure appropriate access across teams, environments, and services

• Build scalable detection and monitoring into the fabric of our cloud infrastructure

• Evolve security standards and best practices through repeatable, well-documented approaches

Skills you should HODL

• Deep experience securing cloud environments, with a strong focus on AWS

• Expertise in identity and access management (IAM), including designing least-privilege models, managing complex permission structures, and scaling access controls in dynamic environments

• Familiarity with cloud-native logging and visibility patterns, and how to integrate them into centralized detection and monitoring workflows

• Experience using CSPM tools with a focus on reducing noise and highlighting what really matters

• Hands-on experience with Infrastructure as Code, preferably Terraform

• Proficiency in scripting to automate, integrate, and accelerate workflows using Python or Bash

• The ability to use AI tooling as a force multiplier to move faster, solve problems, and increase impact

• Skilled at communicating across technical and non-technical teams, advocating for secure practices, and aligning security work with business priorities

• A bias towards action and a track record of driving security improvements from idea to execution

Nice to haves

• Experience with GCP or multi-cloud environments

• Exposure to Kubernetes security and workload protection

• Background in fintech, crypto, or regulated industries

• Experience scaling security programs in high-growth orgs

• Contribution to open-source cloud security tooling or research

#LI-Remote #LI-DA1 #USCANBRUKEU

This job is accepting ongoing applications and there is no application deadline.

Please note, applicants are permitted to redact or remove information on their resume that identifies age, date of birth, or dates of attendance at or graduation from an educational institution.

We consider qualified applicants with criminal histories for employment on our team, assessing candidates in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.

Kraken is powered by people from around the world and we celebrate all Krakenites for their diverse talents, backgrounds, contributions and unique perspectives. We hire strictly based on merit, meaning we seek out the candidates with the right abilities, knowledge, and skills considered the most suitable for the job. We encourage you to apply for roles where you don’t fully meet the listed requirements, especially if you’re passionate or knowledgable about crypto!

As an equal opportunity employer, we don’t tolerate discrimination or harassment of any kind. Whether that’s based on race, ethnicity, age, gender identity, citizenship, religion, sexual orientation, disability, pregnancy, veteran status or any other protected characteristic as outlined by federal, state or local laws.

Stay in the know

Follow us on Twitter

Learn on the Kraken Blog

Connect on LinkedIn