Senior Security Engineer (Cloud Engineer)

Bluevine is the largest small business banking platform in the U.S., redefining how entrepreneurs manage their money. This hybrid role seeks a Senior Cloud Information Security Engineer to join the Security team, focusing on securing cloud infrastructure and production environments. Responsibilities include designing and implementing cloud security controls, continuously assessing security posture, managing IAM, and partnering with DevOps and R&D to embed security into processes, driving complex security initiatives end-to-end.

Must Have

• 5+ years of experience in Information Security, with a strong focus on cloud and infrastructure security
• Hands-on experience with a major Cloud IaaS provider (AWS Mandatory)
• Deep hands-on experience with Linux systems
• Strong networking expertise, including troubleshooting across all OSI layers
• Deep understanding of modern cloud-based applications and APIs (HTTP/S, PKI, microservices, load balancers, firewalls, WAF)
• Hands-on experience operating security platforms such as WAFs, LBs, VPNs, vulnerability scanners, and directory services
• Strong passion for security automation, with scripting experience (Bash and/or Python)
• Solid understanding of risk assessment and the ability to clearly communicate security and privacy considerations
• Independent, proactive, and self-driven, with a strong ownership mindset

Perks & Benefits

• Excellent group health coverage and life insurance
• Stock options
• Hybrid work model
• Meal allowance
• Transportation assistance (terms and conditions apply)
• Generous paid time off plan, Holidays
• Company-sponsored mental health benefits
• Financial advisory services for both short- and long-term goals
• Learning and development opportunities to support career growth
• Community-based volunteering opportunities

About Bluevine

Bluevine is the largest small business banking platform in the U.S., redefining how entrepreneurs manage their money. We create modern financial solutions, from checking and lending to payments and beyond, designed to help small business owners grow, thrive, and take control of their financial future. Our best-in-class technology, advanced security, and deep understanding of the small business community give our customers the confidence to focus on what they do best.

Since 2013, we’ve supported more than 750,000 small businesses nationwide. Backed by leading investors like Lightspeed Venture Partners, Menlo Ventures, 83North, and Citi Ventures, our 500+ person global team shares one mission: to give small businesses the financial tools they need to succeed.

We’re innovators driven by big ideas, collaboration, and real impact. Here, you’ll have the freedom to take ownership, grow your career, and make a difference for small business owners across America. Ready to shape what’s next?

This is a hybrid role. At Bluevine, we pride ourselves on our collaborative culture, which we believe is best maintained through in-person interactions and a vibrant office environment. All of our offices have reopened in accordance with local guidelines, and are following a hybrid model. In-office days will be determined by location and discipline.

Bluevine is looking for a Senior Cloud Information Security Engineer to join our Security team and take a key role in securing our cloud infrastructure and production environments.

What You'll Do:

• Own and drive the design, implementation, and long-term ownership of cloud security controls and architectures (AWS preferred), applying security-by-design principles
• Continuously assess and improve cloud security posture through vulnerability management and risk assessments
• Design and manage IAM roles, policies, and access models across cloud environments
• Design, implement, and manage firewall and WAF policies for cloud applications and network perimeters
• Own cloud-related security incident investigations and response efforts
• Partner closely with DevOps and R&D to embed security into architecture and deployment processes
• Define and evolve cloud security standards, policies, and best practices
• Drive complex security initiatives end-to-end, from design through long-term ownership

What We Look For:

• 5 + years of experience in Information Security, with a strong focus on cloud and infrastructure security, including hands-on experience with a major Cloud IaaS provider (AWS Mandatory)
• Deep hands-on experience with Linux systems
• Strong networking expertise, including troubleshooting across all OSI layers
• Deep understanding of modern cloud-based applications and APIs (HTTP/S, PKI, microservices, load balancers, firewalls, WAF), with hands-on experience operating security platforms such as WAFs, LBs, VPNs, vulnerability scanners, and directory services
• Strong passion for security automation, with scripting experience (Bash and/or Python)
• Solid understanding of risk assessment and the ability to clearly communicate security and privacy considerations to technical and non-technical stakeholders
• Independent, proactive, and self-driven, with a strong ownership mindset

Benefits & Perks

• Excellent group health coverage and life insurance
• Stock options
• Hybrid work model
• Meal allowance
• Transportation assistance (terms and conditions apply)
• Generous paid time off plan, Holidays
• Company-sponsored mental health benefits
• Financial advisory services for both short- and long-term goals
• Learning and development opportunities to support career growth
• Community-based volunteering opportunities