Staff Cloud Security Engineer

LastPass delivers Secure Access Essentials, helping individuals and organizations manage and protect access to AI, applications, and credentials straight from the browser. Trusted by more than 100,000 businesses and millions of users worldwide, LastPass blends strong security with everyday simplicity. From discovering unapproved AI and applications to reducing login friction and securing credentials across the business, LastPass helps teams and individuals stay productive, minimise risk, and remain prepared as their environments evolve.

LastPass is looking for a Staff Cloud Security Engineer: In this role, you will collaborate closely with our DevOps, CI/CD engineers, and Architecture team to implement and maintain security best practices across our infrastructure.

About the Team: The Product Security team at LastPass is seeking a Staff Cloud Security Engineer to join us in safeguarding the privacy and security of our company and users’ data. We are a team of skilled application and cloud security engineers working in close partnership with our engineering, platform, and trust & security teams. If you are passionate about complex problem solving and motivated by scale, then this is the role for you!

What are some of the exciting challenges you will be working on?

• Leverage your expertise in security architecture to help engineers build and securely operate products and services from the ground up
• Assess, design, and implement security processes and controls to meet security, compliance, and audit requirements
• Conduct proactive research to identify emerging threats and attack vectors
• Collaborate within a highly agile product security team and across other cross-functional teams

What does it take to work at LastPass?

• Proven experience working with AWS
• Proven experience collaborating closely with engineering teams and supporting their journey toward “shifting security left”
• Hands-on experience with Infrastructure as Code (AWS CDK, CloudFormation, or Terraform)
• Working knowledge of AWS security services and features to maintain a secure production environment (e.g., AWS IAM, Config, KMS, Secrets Manager, CloudWatch, CloudTrail, GuardDuty)
• Experience with version control, build, and bug tracking systems (GitLab, GitLab CI, and Jira)
• Strong understanding of internet and computer networks (TCP/IP, TLS, VPN, etc.)
• Hands-on experience with Kubernetes and securing Kubernetes workloads on AWS EKS
• Experience securing containerized workloads (Docker)
• Collaborative team player with a hands-on, can-do attitude
• Fluency in English with excellent written and verbal communication skills

It's great, but not required:

• AWS Certified Security – Specialty certification or an equivalent credential
• Experience with GitOps, CSPM, KSPM, Kubernetes admission control, and supply chain security

Why LastPass?

• Market-leading password manager
• High-growth, collaborative environment with inclusive teams
• Remote-first culture
• Competitive compensation
• Flexible Paid Time Off policies, including but not limited to: Quarterly Self-Care Days (4 extra paid days off annually) and Volunteer Days
• Parental leave
• Comprehensive health coverage, including dependents
• Home office setup support
• LastPass Families free account for up to 5 members
• Continuous learning and development opportunities, including an annual learning stipend to invest in your growth
• Peer-to-peer recognition through Motivosity
• Employee Assistance Program for well-being support
• Remote work stipend to support your home office needs
• Short-Term or Remote-Centric Work Arrangements for added flexibility

Unlock your potential with us - your skills, experience, and unique perspective matter more than just checking the boxes. Apply today, and let's build the future together! We’re building an inclusive community that reflects the people of all races, genders, sexual orientations, national origins, backgrounds, and perspectives who share our world.