Senior Cloud Security Engineer (DevSecOps)

TRM LabsUnited States1mo ago

In Office Senior NA Cryptocurrency Cloud Computing Shipping Security Engineer Senior DevOps Engineer GCP Coaching Program Management Heroku Terraform

Upload My Resume

Drop here or click to browse · PDF, DOCX, TXT

Apply in One Click

Job Description

Build a Safer World. TRM Labs provides blockchain analytics and AI solutions to help law enforcement and national security agencies, financial institutions, and cryptocurrency businesses detect, investigate, and disrupt crypto-related fraud and financial crime. TRM’s blockchain intelligence and AI platforms include solutions to trace the source and destination of funds, identify illicit activity, build cases, and construct an operating picture of threats. TRM is trusted by leading agencies and businesses worldwide who rely on TRM to enable a safer, more secure world for all. From our customers to our code, and everything in between, the security team at TRM is integral to every aspect of our business. As a Senior Cloud Security Engineer, you will contribute to the charter for maturing TRM’s cloud infrastructure and security systems at scale. From designing the strategy to implementing best practices, your work will accelerate our mission of building a safer financial system for billions of people. The impact you’ll have here: Provide technical guidance and leadership as a cybersecurity expert on topics such as architecture, configuration management, and environment design Leverage automation tools, configuration management, and infrastructure-as-code (IaC) solutions to standardize security across all environments Guide relevant stakeholders such as engineering, product, and leadership and ensure alignment with security strategies Identify and communicate cloud platform vulnerabilities and mitigation options to stakeholders that balance business agility with security Serves as a Cloud Security Subject Matter Expert (SME) by maintaining knowledge of industry-recognized cloud security technologies and concepts; actively engages and assists lines of business to understand their needs and develop secure business solutions Drive security improvements in the GCP environment and perform Identity and Access Management (IAM) in GCP to ensure that principles of least privilege and roles-based access control are maintained Participate in audits of the cloud environment by working with external auditors and internal resources to ensure we are meeting expectations This work has real stakes. Depending on your role at TRM, your week might look like: Driving critical investigations that can’t wait for typical business hours. Shipping products in days when others would schedule quarters. Partnering with teams across time zones to deliver insights while the story is still unfolding. Building new solutions from first principles when the playbook doesn’t yet exist. Protecting victims and customers by tracing illicit activity and disrupting criminal networks. At TRM we care deeply about our craft. We are looking for individuals who want their work to matter, who experiment with speed and rigor, and who take pride in building a safer world for billions of people. If you’re excited by TRM’s mission but don’t check every box, we encourage you to apply — we hire for slope, judgment, and the will to learn fast. TRM is a Series C company with $220M in total funding, backed by Blockchain Capital, Goldman Sachs, Bessemer, Y Combinator, Thoma Bravo, and others. Headquartered in San Francisco, TRM operates as a distributed-first company with hubs in Los Angeles, San Francisco, New York, Washington D.C., London, and Singapore. Recruitment agencies TRM Labs does not accept unsolicited agency resumes. Please do not forward resumes to TRM employees. TRM Labs is not responsible for any fees related to unsolicited resumes and will not pay fees to any third-party agency or company without a signed agreement. By submitting your application, you are agreeing to allow TRM to process your personal information in accordance with the TRM Privacy Policy Learn More: Company Values | Interviewing | FAQs Learn More

Requirements

Relevant industry experience in managing cloud security programs, Identity Access Management (IAM), and cloud-native security solutions (e.g., firewalls)
Expert-level knowledge of cloud infrastructure components, preferably with GCP
Strong bias for action; ability to juggle multiple priorities and create a sense of urgency in a fast-paced, dynamic environment.
Ability to audit and provide audit support for security controls within the cloud environment
Experience with infrastructure vulnerability testing tools, Cloud Application Platforms (Heroku), and Infrastructure as code tools (Terraform)
The culture of our team is built on mutual respect, where everyone's opinion is valued and heard.
We prioritize flexibility and efficiency, always seeking smarter ways to work without compromising quality.
Transparency is at the heart of how we operate, both within the team and with the business, as we focus on clearly communicating and addressing cyber risks.
Our collaborative approach ensures that we not only mitigate these risks but also align our efforts with business goals to protect and drive success.
Team’s Time Zones:
Team’s Time Zones:
Eastern Standard Time (EST - GMT-4)
Pacific Standard Time (PST - GMT-7)
Central European Summer Time (CET - GMT+2)
Life at TRM
We are building a safer world. That promise shows up in how we work every day.
TRM runs fast. Really fast. We’re a high‑velocity, high‑ownership team that expects clarity, follow‑through, and impact. People who thrive here are energized by hard problems, experimentation, and direct feedback. If something takes months elsewhere, it often ships here in days.
That pace isn’t for everyone. If you are optimizing primarily for consistent work-life balance, use the interview process to pressure-test fit. We want teammates who thrive here, not just survive here.
AI Fluency at TRM
AI fluency is a baseline expectation at TRM.
We believe AI meaningfully changes how top performers operate. We expect every team member to use AI to accelerate and reimagine their craft, not just automate surface tasks.
At TRM, AI fluency means you are among the top 10 percent of operators in your function in how you apply AI to:
Accelerate repeatable workflows
Structure and solve problems
Improve output quality
Increase speed and leverage
You will be evaluated on applied AI fluency during the interview process.
Leadership Principles
We hire and grow against three leadership principles. They’re the standards for how we operate, treat each other, and make decisions.
Impact-Oriented Trailblazer: We put customers first and move with speed, focus, and adaptability. We treat every plan like an experiment – test, ship, measure, and iterate quickly.
Master Craftsperson: We care deeply about our craft. We balance speed with high standards, own outcomes end‑to‑end, and invest in getting better everyday.
Inspiring Colleague: We add clarity and energy, not noise. We bring humility, candor, and a one‑team mindset — giving and receiving feedback to make the team stronger.
Learn more: Interviewing at TRM: How We Hire and What Success Looks Like
Learn more:

Responsibilities

This work has teeth. At TRM, your week might include:
Driving critical investigations that can’t wait for typical business hours.
Shipping products in days when others would schedule quarters.
Partnering with teams across time zones to deliver insights while the story is still unfolding.
Building new solutions from first principles when the playbook doesn’t yet exist.
Protecting victims and customers by tracing illicit activity and disrupting criminal networks.
We look for people who want their work to matter, who build with speed and rigor, and who take pride in protecting others through their craft. If you’re excited by TRM’s mission but don’t check every box, apply anyway. We hire for slope, judgment, and the will to learn fast.
Build to protect civilization. Let’s do it together.
Recruitment agencies
TRM Labs does not accept unsolicited agency resumes. Please do not forward resumes to TRM employees. TRM Labs is not responsible for any fees related to unsolicited resumes and will not pay fees to any third-party agency or company without a signed agreement.
By submitting your application, you are agreeing to allow TRM to process your personal information in accordance with the TRM Privacy Policy
Learn More: Company Values | Interviewing | FAQs
Learn More