Polymarket Inc. logo

Cloud Security Engineer

Job Overview

Location

Remote

Job Type

Full-time

Category

Security Engineer

Date Posted

May 16, 2026

Full Job Description

đź“‹ Description

  • • Own and continuously improve Polymarket’s AWS security posture across all accounts, regions, and services, including IAM policies, Service Control Policies (SCPs), VPC segmentation, and account-level security baselines
  • • Review and contribute to infrastructure as code (IaC) modules written in Pulumi, Terraform, CDK, or equivalent, embedding security defaults into deployment pipelines through policy-as-code validation and misconfiguration scanning
  • • Own cloud-side security telemetry by managing and interpreting data from CloudTrail, GuardDuty, Security Hub, Config Rules, VPC Flow Logs, and S3 access logs to detect anomalies and enforce compliance
  • • Develop and tune detection logic for cloud-specific threats, collaborating with the SOC team to improve alert fidelity, refine incident response runbooks, and lead AWS-level investigations
  • • Govern secrets management using AWS Secrets Manager and SSM Parameter Store, including KMS key policy design, rotation schedules, and envelope encryption patterns
  • • Drive remediation of findings from AWS Inspector, Security Hub, and third-party CSPM tools, maintaining benchmarks aligned to CIS AWS Foundations and industry best practices
  • • Support audit and compliance activities including SOC 2, PCI-DSS, or similar frameworks by preparing documentation, conducting access reviews, and remediating privilege creep
  • • Partner closely with DevOps, Platform, and Application Engineering teams to make secure-by-default configurations the path of least resistance, ensuring security does not impede engineering velocity
  • • Evaluate architectural decisions for security risk and clearly communicate findings to engineering peers, advocating for secure design patterns in system upgrades and new deployments
  • • Implement and maintain automated security controls within CI/CD pipelines to prevent misconfigurations before they reach production environments
  • • Monitor and respond to cloud-based threat vectors specific to high-volume transactional systems, with awareness of risks unique to decentralized financial platforms
  • • Conduct regular access reviews across AWS accounts to identify and remediate excessive permissions, ensuring least-privilege principles are enforced at scale
  • • Collaborate with internal teams to translate compliance requirements into technical controls and validate adherence through automated assessments and manual audits
  • • Maintain up-to-date documentation of security architectures, control implementations, and incident response procedures for internal and external review
  • • Proactively identify emerging cloud security risks and propose scalable solutions that align with Polymarket’s rapid growth and high-transaction environment
  • • Serve as the primary cloud security liaison between engineering, compliance, and external auditors during assessments and remediation cycles
  • • Apply scripting or programming skills (Python, TypeScript, or Go) to automate routine security tasks, build custom tooling, and integrate security checks into existing workflows

Skills & Technologies

Python
TypeScript
Express
AWS
Terraform
Remote

Ready to Apply?

You will be redirected to an external site to apply.

AI Job Fit Analysis
Pro

See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.

Polymarket Inc. logo
Polymarket Inc.
Visit Website

About Polymarket Inc.

Polymarket is a decentralized prediction market platform that allows users to trade on the outcomes of future events. Operating on blockchain technology, it enables individuals to bet on a wide range of topics, including politics, current events, and cryptocurrency. The platform facilitates transparent and trustless trading by leveraging smart contracts, ensuring that payouts are automatically executed based on verified event resolutions. Polymarket aims to democratize information and provide a novel way for people to engage with and profit from their insights into the future, fostering a global community of informed predictors.

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Newsletter

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.

Similar Opportunities

Expired
London Office
Full-time
Expired May 12, 2026
Onsite

4 months ago

Expired
Sydney
Full-time
Expired Apr 14, 2026
Senior
Onsite

5 months ago

Expired
Remote - Bulgaria
Full-time
Expired Apr 25, 2026

4 months ago

Brazil - Remote
Full-time
Expires Jul 16, 2026
Python
Java
AWS
+4 more

1 month ago