Goldman Sachs · 17 hours ago
Engineering - Cloud Security - Security Architecture & Platform Engineering - Associate - Seattle
Seattle, WA
Full-time
Onsite
Entry, Mid Level
2+ years expGoldman Sachs is a leading global investment banking, securities and investment management firm. They are seeking an Associate for their Cloud Security team to design, implement, and maintain secure cloud architecture while collaborating with cross-functional teams to enhance cloud security solutions and ensure compliance with industry standards.
FinanceBankingVenture CapitalFinancial Services
Responsibilities
Design, implement, and maintain secure cloud architecture aligned with NIST frameworks and industry-recognized cloud security standards, ensuring compliance, resilience, and least-privilege access across cloud environments
Build and deploy cloud security posture management infrastructure using Infrastructure as Code (Terraform/CDK)
Implement integrations with enterprise services including risk management systems, monitoring platforms, SIEM, and compliance frameworks
Deploy and maintain security policies, automated compliance validation, and remediation workflows
Demonstrates thought leadership: Guides and upskills other engineers and clients in cloud best practices; demonstrates expertise with automation and infrastructure as code (IaC)
Migrate infrastructure security controls to policy-as-code frameworks with automated testing and validation
Integrate security controls into CI/CD pipelines for shift-left security and pre-deployment validation
Optimize security policies during migration for improved coverage and reduced false positives
Implement policy versioning, change management workflows, and automated deployment pipelines
Support secure-by-default infrastructure initiatives for standardized cloud account provisioning
Integrate security controls into Software Development Lifecycle (SDLC) with automated gates and validation
Implement security baselines and automated compliance checks for new cloud accounts and services
Provide self-service security scanning and remediation tools for development teams
Support implementation of cloud-native authentication and authorization frameworks for service flows
Assist with service identity onboarding and certificate lifecycle management
Execute migration procedures and validate authentication flows for cloud-native access patterns
Troubleshoot authentication issues, performance bottlenecks, and integration challenges
Provide technical support to application teams during authentication framework migrations
Proficient in one or more enterprise scale observability tools such as Splunk, Datadog, FluentD, ELK
Experience maintaining and improving the reliability of applications and infrastructure
Provide regional timezone coverage for cloud access and security platform operational issues
Participate in 24/7 on-call rotation for security incidents and platform support
Monitor platform health, respond to alerts, and escalate critical incidents as needed
Implement monitoring, alerting, and automated remediation workflows
Ability to document solutions, cloud architectural patterns, and best practices to ensure that clients have guidance as needed
Proven ability to partner with cloud hyperscale partners to define and troubleshoot cloud architectures and service enablements
Create runbooks for operational scenarios, troubleshooting guides, and training materials
Collaborate with global team members for consistent implementation across regions
Solid understanding of Microservices and APIs
Develop automation scripts for operational tasks, security workflows, and remediation processes
Build dashboards and reporting mechanisms for security posture visibility
Eager to problem solve and troubleshoot issues that may arise day to day
Qualification
Required
Minimum 2-4 years of relevant professional experience with at least 1+ years of familiarity with AWS services
B.S. or higher in Computer Science (or equivalent work experience)
Familiarity with disciplines of enterprise software development such as configuration and release management, source code and version controls along with operating considerations such as monitoring
Experience performing and/or leading root cause analysis following incidents
Experience in Security or Data engineering preferably in an SRE/DevOps environment
Practiced in Java, Python, Javascript / Typescript / Node
Strong written and verbal communication skills
Ability to establish trusted partnerships with product leads and engineering stakeholders
Comfort with agile operating model and DevOps culture
Understanding of authentication protocols (OAuth 2.0, mTLS, certificate-based authentication)
Familiarity with cloud security standards (CIS Benchmarks, NIST frameworks) and compliance requirements
Benefits
Training and development opportunities
Firmwide networks
Benefits
Wellness and personal finance offerings
Mindfulness programs
Company
Goldman Sachs
Goldman Sachs is a multinational financial services firm providing securities, investment banking, and management services.
10001+ employees
H1B Sponsorship
Goldman Sachs has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1954)
2024 (1685)
2023 (2060)
2022 (2326)
2021 (2258)
2020 (1572)
Funding
Current Stage
Public CompanyTotal Funding
$8.5B2026-01-26Post Ipo Debt· $2.5B
2025-04-23Post Ipo Debt· $6B
2012-06-05Post Ipo Equity
Leadership Team
David M. Solomon
Chairman & Chief Executive Officer
John Waldron
President and Chief Operating Officer
Recent News
2026-02-12
Company data provided by crunchbase