Senior Cloud Security Engineer, DevSecOps

Canada

Figment powers the future of Web3 through industry-leading blockchain infrastructure. As the leading provider of staking solutions, we help 500+ institutional clients optimize their crypto rewards, including top exchanges, asset managers, wallets, foundations, custodians, and major token holders. Our clients trust Figment for a comprehensive suite of services, including reward optimization, cutting-edge API development, detailed rewards reporting, seamless partner integrations, governance support, and slashing protection.

Backed by a team of passionate and intelligent Figmates, with a 100% remote-first global presence across 12 countries, our company is on a mission to accelerate the adoption, growth, and long-term success of the Web3 ecosystem. We’re building the infrastructure that will power the decentralized future.

As a fast-growing tech company, we’re looking for builders and innovators — people who thrive in the face of uncertainty and are motivated to make an impact. We are also looking for true teammates - people who are genuine, humble, and driven to level up together. If you're excited to shape the future, contribute to an energetic company culture, and work at the cutting edge of blockchain technology, we want you to join our team and help us lead the charge!

We are seeking a Cloud Security Engineer with a strong background in cloud security, DevOps, and platform engineering to help secure and maintain our cloud infrastructure. This role will be responsible for securing cloud environments, managing Kubernetes clusters, and ensuring that our cloud infrastructure is resilient, secure, and scalable.

The ideal candidate will bring a security-first mindset while working on infrastructure deployments, automation, and cloud-native security solutions. You will work closely with engineering teams to design and implement security best practices in a fast-paced, highly scalable cloud environment. This full-time remote position requires participation in an on-call rotation.

• Design, implement, and manage security controls for cloud infrastructure in AWS and GCP.
• Develop and enforce security policies, IAM roles, and least privilege access across cloud environments.
• Implement and maintain cloud security monitoring, logging, and alerting using tools like AWS GuardDuty, Security Hub, and GCP Security Command Center.
• Secure Kubernetes workloads by implementing RBAC, network policies, and container runtime security.
• Conduct regular cloud security assessments, including misconfiguration reviews, vulnerability management, and compliance checks.
• Deploy and maintain cloud infrastructure using code.
• Design secure CI/CD pipelines, ensuring that security scanning is integrated into build and deployment processes.
• Automate deployments and infrastructure updates with CI/CD pipelines.

• 3+ years of experience in Cloud Security, DevOps, or Platform Engineering.
• Strong experience with AWS and/or GCP security principles.
• Up-to-date knowledge of cloud security advisories and vulnerabilities.
• Hands-on experience managing Kubernetes clusters and implementing security best practices.
• Knowledge of container security, runtime protection, and Kubernetes network policies.
• Experience engineering and maintaining Identity and Access management systems and RBAC.
• Experience in security reviews of cloud applications.
• Proficiency in scripting for automation.
• Strong technical writing and communication skills.

• Degree in a technical field (Computer Science, Information Technology, or related).
• Proficiency in Python or other scripting languages.
• Knowledge of Infrastructure-as-Code (IaC) tools like Terraform/CloudFormation is a plus.
• Knowledge of Configuration-as-Code (CaC) tools like Chef, Salt, Ansible.
• Experience managing pipelines and workflows via CI/CD.
• Working knowledge of cloud platforms, especially AWS, GCP, Kubernetes, Ansible and GitHub.
• Understanding of blockchain and crypto technology, particularly the unique security risks in Web3, blockchain protocols, and smart contracts.
• Industry certifications such as Certified Kubernetes Administrator (CKA), Certified Kubernetes Application Developer (CKAD), AWS Certified Solutions Architect, AWS Certified SysOps Admin, AWS Security Specialty.

In addition to collaborating with other Cloud Security team members, this role will collaborate most often with our Internal Security and Engineering teams.

At Figment, we offer an exciting range of competitive benefits designed to support and empower every member of our team:

• 100% remote-first environment. Our flagship office is in Toronto, Canada. We also have additional co-working spaces in New York, Montreal, London, and Singapore.
• 4 weeks of PTO that kick in day one, with an additional 1 week of flex days.
• Extended company-paid health benefits that kick in day one.
• Best in class parental leave and flexible arrangements.
• A home office stipend to create a space that you enjoy working in.
• A yearly Learning & Development budget.
• 401K (US) or RRSP match (Canada).
• Stock Options in the company.
• A competitive bonus (based on company performance) that is distributed bi-annually.
• Annual onsite company gatherings and retreats to inspire team bonding, collaboration, and fun!

• We are a team of under 200 members, which allows for an impactful contribution from day one.
• We place a strong focus on personal career development to shape a role that fits your goals and interests.
• Our culture is one of honesty, professionalism and risk taking in a high-growth environment.
• Our team members themselves recommend working at Figment - with an eNPS score of 54 (which is ranked as ‘great’!).

One of Figment’s core principles is “Making the Invisible Visible” - ensuring transparency and information sharing in all communication. Figment is committed to transparency regarding pay, benefits, and other compensation types for all internal roles as well as all roles being hired for.

Base Salary:The CAD base salary range for this position is CAD$150,000 - $185,000.This range reflects base salary only, and does not include additional compensation or benefits.

At Figment, we try to go above and beyond in making sure that you have the best possible experience interviewing with us. We strive for a smooth, organized, and informative process.