WebflowSenior Security Engineer, Cloud Security
Senior Security Engineer, Cloud Security needed to strengthen Webflow’s cloud environment, ensure secure-by-design principles in AWS infrastructure, and meet security needs.
We’re looking for a Senior Security Engineer, Cloud Security to join Webflow’s Security Operations team. You’ll collaborate closely with our Infrastructure Engineering, Security DevOps, and Application Security teams to harden Webflow’s cloud environment, ensure secure-by-design principles in our AWS infrastructure, and help us meet current and future security needs.
This role is ideal for an engineer who thrives at the intersection of security architecture, DevOps, and automation — someone passionate about building scalable, secure, and resilient systems.
Location: Buenos Aires or Remote (Argentina) Type: Full-time
Responsibilities
You’ll lead and execute cloud security initiatives that strengthen Webflow’s infrastructure and operational security posture. Responsibilities are grouped by scope and impact.
Design, implement, and maintain secure AWS infrastructure following best practices (least privilege, network segmentation, encryption, monitoring).
Partner with infrastructure and platform teams to embed security controls in CI/CD pipelines, infrastructure as code, and containerized environments.
Own the cloud security posture management (CSPM) strategy, ensuring continuous compliance and automated detection of misconfigurations.
Evaluate and deploy security tooling for cloud visibility, IAM governance, and intrusion detection.
Collaborate with engineering teams to secure Kubernetes and containerized workloads, ensuring adherence to runtime and image scanning policies.
Respond to and investigate cloud-related security incidents, providing technical expertise during triage and remediation.
Contribute to the design and execution of Webflow’s cloud security roadmap, identifying areas for automation and scalability.
Conduct threat modeling and risk assessments for cloud architecture and new service deployments.
Develop internal tools and scripts to enhance cloud monitoring and detection capabilities.
Stay current with evolving AWS services, vulnerabilities, and security trends — proactively identifying opportunities to enhance Webflow’s defenses.
About You
You’ll thrive as a Senior Security Engineer, Cloud Security if you:
- Have 5+ years of experience in cloud security, infrastructure engineering, or DevSecOps (with at least 3 years focused on AWS).
- Demonstrate strong knowledge of AWS services and security controls
- Have hands-on experience securing Kubernetes and containerized workloads.
- Are proficient with infrastructure as code (Pulumi, Terraform, CloudFormation)
- Understand network security concepts including firewalls, segmentation, and zero trust.
- Can script or automate security tasks using Python, Go, or Bash.
- Communicate clearly and collaborate effectively across security, DevOps, and product teams.
- Bring a proactive, builder’s mindset — identifying and closing gaps before they become issues.
Nice to Have
- Experience with multi-account AWS architectures and security guardrail enforcement via Control Tower or Organizations.
- Familiarity with secrets management solutions
- Knowledge of threat detection and response in serverless or containerized environments.
- Contributions to open-source security tools or participation in cloud security communities.