Cloud Security Engineer at Mesh

About Mesh At Mesh, our mission is to enable consumers to pay and be paid with any asset. Today, trillions of dollars in tokenized assets exist but remain largely unusable for everyday commerce. Mesh is bridging this gap by making crypto payments reliable, useful, and ubiquitous. We combine a powerful orchestration engine with a seamless consumer app to unlock liquidity for the world. Backed by leading investors like PayPal Ventures, Paradigm, and Galaxy Ventures, we are building the infrastructure for the next era of the global economy. Join us! Overview As a Cloud Security Engineer, you will be the primary architect and guardian of our digital infrastructure, blending deep technical engineering with proactive risk management. You will design and deploy secure, scalable environments by integrating security directly into the DevSecOps lifecycle, ensuring that every layer of the stack—from network perimeters and identity management to container runtimes—is resilient by design. By leveraging automation and observability tools, you will maintain a continuous defense-in-depth strategy, overseeing threat detection, incident response, and compliance frameworks. Ultimately, this role bridges the gap between development and operations, spearheading cloud governance and disaster recovery efforts to guarantee long-term operational stability and a hardened security posture. What You'll Do • Lead Platform & Infrastructure Development by architecting scalable, resilient systems using Infrastructure as Code (IaC). • Design and implement Secure Infrastructure across cloud environments, ensuring a "security-by-default" architecture. • Manage Cloud Resources and DNS Operations, including zone management, records, and global resolution strategies. • Optimize performance and defense by deploying and managing WAF, CDN, and Network Firewalls (IDS/IPS). • Drive CI/CD Automation by integrating security gates, SAST/DAST scanning, and automated Secret Rotation into development pipelines. • Enforce robust Identity and Access Management (IAM) protocols and oversee VPN & Certificate Management. • Advance Security Operations by implementing and managing SIEM, SOAR, and XDR platforms for rapid threat detection and response. • Maintain Cloud Security Posture Management (CSPM) and Infrastructure Observability to proactively identify and remediate misconfigurations. • Secure containerized workloads by establishing strict Docker & Runtime Security standards. • Own Compliance and Governance, specifically meeting SOC2 Compliance Requirements and maintaining all necessary technical controls. Who You Are • Bachelor Degree in Computer Science or related field • 15+ years of experience in information technology security • Experience as a hands on technology leader in a highly technical environment • Must be willing to work outside normal business hours as needed • Hands-on, in-depth experience with a major cloud platform (Azure, GCP or AWS). • Deep expertise in a specific Infrastructure as Code (IaC) tool such as Terraform. • Experience with container orchestration security, including Kubernetes, service mesh, and serverless architectures. • Expert understanding of application, network, operating system, and core infrastructure security concepts and concerns • Working knowledge of common information technology management frameworks and regulations such as ISO 27001/2, NIST, SOC2, GDPR, DORA, etc. - Nice to Have • CISSP, CISA or SANS GIAC certification - preferred Why You’ll Love It Here At Mesh, you're not stepping into a typical role—you're joining a rocket ship in mid-liftoff. You'll tackle complex, meaningful problems that actually move an industry forward, working alongside a sharp, motivated team that moves quickly, collaborates deeply, and expects everyone to operate with ownership. This is the kind of place where you'll see your work ship fast, make real impact, and be able to point to something and say, "I built that." You'll grow fast, level up your skills, and get a front-row seat to how a high-growth company scales from the inside, with competitive comp, solid benefits, and room to stretch your craft all coming standard. If you're energized by building, learning, and shaping something big—this is where you'll want to be. In-Office Expectations Employees based in our San Francisco, New York, and Bangalore hubs are expected to work from the office at least 40% of the time (approximately two days per week). This expectation may vary slightly depending on role, team, and business needs. Certain roles that require closer cross-functional collaboration or operational support may have additional in-office requirements, which will be discussed during the interview process. Our hybrid approach is designed to balance meaningful in-person collaboration, team building, and real-time decision-making with the flexibility to work remotely. We believe this structure supports strong execution while preserving autonomy and focus time. How We Care For Our Team We believe great work happens when people feel valued and supported. That starts with competitive salary and equity that grows as you and the company grow, plus comprehensive health coverage for you and your family. We offer unlimited PTO—and we mean it. Take the time you need to recharge and show up at your best. We're invested in your growth with a dedicated budget for courses, conferences, and certifications. Work from wherever you're most productive with our remote-friendly approach, and count on having the top-tier tools and equipment you need to do exceptional work. Mesh Pay is committed to equal employment opportunities regardless of race, color, genetic information, creed, religion, sex, sexual orientation, gender identity, lawful alien status, national origin, age, marital status, and non-job related physical or mental disability, or protected veteran status. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.