Cloud Security Engineer at Yipitdata

About Us: YipitData is the leading market research and analytics firm for the disruptive economy and most recently raised $475M from The Carlyle Group at a valuation of over $1B. Every day, our proprietary technology analyzes billions of alternative data points to uncover actionable insights across sectors like software, AI, cloud, e-commerce, ridesharing, and payments. Our data and research teams transform raw data into strategic intelligence, delivering accurate, timely, and deeply contextualized analysis that our customers—ranging from the world’s top investment funds to Fortune 500 companies—depend on to drive high-stakes decisions. From sourcing and licensing novel datasets to rigorous analysis and expert narrative framing, our teams ensure clients get not just data, but clarity and confidence. We operate globally with offices in the US (NYC, Austin, Miami, Mountain View), APAC (Hong Kong, Shanghai, Beijing, Guangzhou, Singapore), and India. Our award-winning, people-centric culture, recognized by Inc. as a Best Workplace for three consecutive years, emphasizes transparency, ownership, and continuous mastery. What It’s Like to Work at YipitData: YipitData isn’t a place for coasting, it’s a launchpad for ambitious, impact-driven professionals. From day one, you’ll take the lead on meaningful work, accelerate your growth, and gain exposure that shapes careers. Why Top Talent Chooses YipitData: • Ownership That Matters: You’ll lead high-impact projects with real business outcomes • Rapid Growth: We compress years of learning into months • Merit Over Titles: Trust and responsibility are earned through execution, not tenure • Velocity with Purpose: We move fast, support each other, and aim high—always with purpose and intention If your ambition is matched by your work ethic—and you're hungry for a place where growth, impact, and ownership are the norm—YipitData might be the opportunity you’ve been waiting for. About the Role: We are seeking an experienced Cloud Security Engineer to join our security team and play a critical role in protecting our cloud-native infrastructure, data, and SaaS ecosystem. As a mid-market, cloud-first company, our technology stack is built primarily on AWS with extensive use of SaaS applications across the enterprise. You will be responsible for designing, implementing, and maintaining security controls that protect our cloud environments, ensure compliance, and enable the business to move fast and securely. This is a hands-on, technically deep role that blends cloud infrastructure security, identity and access management, detection engineering, and SaaS security governance. This role will serve as a key technical resource for security across the organization. This is a remote-friendly opportunity that can sit in NYC (where our headquarter is located), one of our office hubs in Austin, Miami, Los Angeles (CA), and Cupertino (CA), or anywhere else in the US. However, depending upon where the remote work is performed, income could be subject to New York State tax withholding. We expect U.S. based working hours with the majority of the team working East and Central Time Zones. As Our Cloud Security Engineer You Will: • Cloud Infrastructure Security (AWS Focus) • Design, implement, and maintain security controls across our AWS environment • Manage and tune AWS-native security tooling (GuardDuty, Security Hub, CloudTrail, Inspector, etc) • Develop and enforce infrastructure-as-code (IaC) security policies using tools such as Terraform • Conduct periodic reviews of AWS account architecture, SCPs, and organizational unit (OU) structures to ensure least-privilege and segmentation best practices • Collaborate with Platform Engineering teams to shift left our security posture by embedding security into CI/CD pipelines • Monitor, investigate, and respond to cloud security alerts and incidents within AWS environments • Detection, Monitoring & Incident Response • Build and maintain cloud-focused detection rules, alerts, and dashboards within Datadog Security (Cloud SIEM, Cloud Security Management, Application Security) • Develop and operationalize Datadog detection rules, log pipelines, and security signals in collaboration with the SOC team to provide real-time visibility across AWS infrastructure, application logs, and cloud workloads • Correlate findings from Datadog Security with alerts from Obsidian Security and AWS-native tooling to provide a unified view of risk across cloud and SaaS environments • Develop automated response playbooks for common cloud and SaaS security events • Participate in incident response activities, including investigation, containment, and post-incident review for cloud and SaaS-related security events • Conduct threat modeling exercises for cloud architectures and SaaS integrations • Compliance & Governance • Support compliance initiatives (e.g., SOC 2, or other frameworks as applicable) by implementing and evidencing technical controls in AWS and SaaS environments • Maintain security documentation including architecture diagrams, runbooks, and policy documents • Contribute to internal security audits and third-party assessment processes • Track and remediate findings from vulnerability scans, penetration tests, and cloud security assessments You Are Likely To Succeed If: • 5+ years of experience in information security, cloud security, or security engineering roles • 3+ years of hands-on experience with AWS security services and architecture (IAM, VPC security, CloudTrail, GuardDuty, etc.) • Strong understanding of cloud-native security principles including least privilege, defense in depth, zero trust, and shared responsibility models • Hands-on experience with Datadog Security or similar cloud-native SIEM/observability platforms (Cloud SIEM, security signal management, log pipeline configuration, custom detection rules) • Proficiency with Infrastructure-as-Code (Terraform, CloudFormation, or CDK) and policy-as-code frameworks • Working knowledge of container and serverless security • Solid scripting/automation skills in Python, Bash, or similar languages • Familiarity with common security frameworks and standards (NIST CSF, CIS Benchmarks, SOC 2, ISO 27001) Preferred Qualifications: • CISSP, CCSP, and / or AWS Certified Security – Specialty What We Offer: • Our compensation package includes comprehensive benefits, perks, and a competitive salary: • We care about your personal life, and we mean it. We offer flexible work hours, flexible vacation, a generous 401K match, parental leave, team events, wellness budget, learning reimbursement, and more! • Your growth at YipitData is determined by the impact that you are making, not by tenure, unnecessary facetime, or office politics. Everyone at YipitData is empowered to learn, self-improve, and master their skills in an environment focused on ownership, respect, and trust. See more on our high-impact, high-opportunity work environment above! • The annual on-target earnings for this position is anticipated to be up to $185K - $215K. The final offer may be determined by a number of factors, including, but not limited to, the applicant's experience, knowledge, skills, abilities, as well as internal team benchmarks. The compensation package also includes equity. This role may be performed fully remotely within the United States. Please note that our US headquarters are located in NYC. We also have office hubs in Austin, Miami, Los Angeles (CA), and Cupertino (CA). If the remote work is performed outside of these offices, income may be subject to New York State tax withholding. Please note that for this position, we are not able to consider candidates who currently or in the future will require visa sponsorship. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal-opportunity employer. Job Applicant Privacy Notice <img height="1" width="1" style="display:none;" alt="" src="[Upgrade to PRO to see link]" />