Tanium Jobs

Sr. Cloud Cybersecurity Engineer

Tanium

Sr. Cloud Cybersecurity Engineer

Posted Yesterday

Be an Early Applicant

4 Locations

In-Office

120K-355K Annually

Senior level

Information Technology • Other

The Role

Design, implement, and operate cloud and Kubernetes detection and response controls across Azure and AWS. Build detection-as-code, automations, playbooks, and runbooks; perform threat hunting, incident triage, and root-cause analysis; collaborate with engineering and security teams; maintain and improve security posture for regulated cloud environments; participate in on-call rotations.

Summary Generated by Built In

The Basics:

The Senior Cloud Cybersecurity (CCS) Detection and Response Engineer will collaborate with Detection, Security, and Software Engineers to proactively defend Tanium Cloud's services. You will be an integral part of the Tanium Cloud security engineering processes, responsible for the design, implementation, and operation of preventative, detective, and responsive controls to identify, assess, and counter risks and threats before impacting Tanium Cloud.

What you'll do:

Build and operate Tanium Cloud's detection and response engineering in Azure, AWS, and Kubernetes for detections, analysis, and responses as automation as code using DevOps methodologies
Continuously evaluate and enhance the design and effectiveness of Cloud and Kubernetes security measures and establish an ongoing program to advance security and close gaps in our defensive posture.
Proactively characterize unauthorized activity and malicious behaviors in our cloud and container infrastructure and systems through code, testing, and automation
Develop tailored detection policies, perform testing, and implement automation to observe, evaluate, enhance, and review security information using SecDataOps and best practices.
Proactively integrate the latest security threats, vulnerabilities, and industry trends to enhance security detection measures and generate intelligence driven hunts.
Work together with the engineering, IT, and other security groups to create solutions that are expandable and adaptable to protect Tanium Cloud against threats ranging from low-level actors to national cyber-threat agents.
Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work
Be on periodic on-call for triage of critical events from detections and systems

We're looking for someone with:

Education:

Bachelor's degree or equivalent experience
Cloud Security, IT Security, or related technical field preferred

Locality

U.S. Candidates: In accordance with United States government customer requirements, applicants for this role must be a U.S. citizen, national, or resident pursuant to 8 U.S.C. 1101(a)(20) and 8 U.S.C. 1324b(a)(3)

Canadian Candidates: In accordance with Canadian government customer requirements, applicants for this role must undergo personnel security screening and maintain Protected B reliability status

Cloud Detection Engineering Experience

5-7 years of experience in cloud security event prevention, detection, response for public cloud systems (e.g. AWS, Azure) within a DevOps environment
3+ years of hands-on experience in Kubernetes environment, logging, and runtime security for sensitive container workloads, preferably on AKS and EKS
Experience in detection and response engineering methodologies, such as building detection cases, proactively identify known and unknown cyber threats, advisory behaviors
Experience in using security query or analytic tools for security data analysis, such as SQL, KQL, or SPL
Build and improve security playbooks and runbooks for automating security detection and response
Solid understanding of modern attacker tactics, techniques, and procedures (TTPs) against Kubernetes, Container, Serverless, Linux host, and Cloud services (e.g. MITRE ATT&CK, building threat intelligence, etc.)
Experience with security events and incident management in highly regulated hosting environments (such as ISO 27001, NIST SP 800-161r3, FedRAMP, Protected B)

Engineering Experience

Utilize robust analytical and problem-solving capabilities to confirm our hypotheses using precise data and in-depth root cause investigation.
Experience using high-level programming languages (Go, Python) to produce detection-as-code, tools, and automations
Experience managing cloud infrastructure as infrastructure-as-code (e.g. Terraform, CloudFormation, ARM, Pulumi)
Deliver high quality PRs daily using modern software engineering development and automation tools like Git and CI/CD pipelines (i.e. Jenkins, GitHub Actions)

Other

Deliver quality and velocity of contributions using DevOps principles
Relentless desire to automate the mundane to focus on solving the harder problems
Experienced engineer who can put out fires under pressure when things go wrong in production environments and address the root causes of those fires for the future

About Tanium

Tanium is the Autonomous IT company. Driven by AI and real-time endpoint intelligence, Tanium Autonomous IT empowers IT and security teams to make their organizations unstoppable.

Many of the world’s leading organizations trust Tanium’s single, unified platform for endpoint management and security to innovate faster, stay resilient and move business forward with confidence, at scale. To learn how Tanium delivers Autonomous IT for unstoppable business – visit www.tanium.com and follow us on LinkedIn and X.

On a mission. Together.

At Tanium, we are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity. In our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges, we are strengthened by our unique perspectives and by our collective actions.

As a global organization with stakeholders around the world, it’s imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things.

Our commitment to excellence and innovation has earned us a place on the Forbes Cloud 100 list for ten consecutive years, and we continue to be recognized worldwide as a great place to work.

Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most.

What you’ll get

The annual base salary range for this full-time position is $120,000 to $355,000. This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience.

In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits.

Tanium is an Equal Opportunity and Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, gender identity, sexual orientation, disability, protected Veteran status, or other legally protected categories. If you require a reasonable accommodation in searching for a job opening, completing an application, interviewing, or completing any pre-employment testing or requirements, please contact [email protected]. For more information refer to the “Know Your Rights” poster which is available here - https://www.eeoc.gov/poster.

Please be aware of job offers coming from people claiming to be Tanium employees. Tanium employees will only use @tanium.com email addresses to communicate with you, will have video interviews with you, and will never ask you for money.

This link leads to the machine readable files that are made available in response to the federal Transparency in Coverage Rule and includes negotiated service rates and out-of-network allowed amounts between health plans and healthcare providers. The machine-readable files are formatted to allow researchers, regulators, and application developers to more easily access and analyze data.

For more information on how Tanium processes your personal data, please see our Privacy Policy.

Skills Required

U.S. citizen, national, or resident (per U.S. government customer requirements)
Canadian candidates must undergo personnel security screening and maintain Protected B reliability status
Bachelor's degree or equivalent experience in Cloud Security, IT Security, or related technical field
5-7 years experience in cloud security event prevention, detection, and response for public cloud systems (AWS, Azure) in a DevOps environment
3+ years hands-on experience with Kubernetes logging and runtime security for sensitive container workloads (preferably AKS and EKS)
Experience building detection and response engineering methodologies, detection cases, and advisory behaviors
Experience using security query/analytic tools (SQL, KQL, SPL) for security data analysis
Experience building and improving security playbooks and runbooks for automating detection and response
Solid understanding of attacker TTPs for Kubernetes, containers, serverless, Linux hosts, and cloud services (e.g., MITRE ATT&CK)
Experience with security events and incident management in regulated hosting environments (ISO 27001, NIST SP 800-161r3, FedRAMP, Protected B)
Hands-on software engineering experience using high-level languages (Go, Python) to produce detection-as-code, tools, and automations
Experience managing cloud infrastructure as code (Terraform, CloudFormation, ARM, Pulumi)
Experience using Git and CI/CD pipelines and automation tools (Jenkins, GitHub Actions)
Ability to operate under DevOps principles, automate repetitive work, and respond to production incidents under pressure
Willingness to participate in periodic on-call rotations for triage of critical detection events and systems

Tanium Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Tanium and has not been reviewed or approved by Tanium.

Fair & Transparent Compensation — Pay is considered competitive versus market in core roles, and many describe overall satisfaction with total compensation. Outcomes vary by function, but engineering and GTM packages are often viewed as strong.
Equity Value & Accessibility — Equity grants and RSUs are a notable part of total compensation, enhancing overall packages for many roles. Equity is frequently cited alongside competitive base pay and bonuses as a key draw.
Parental & Family Support — Parental leave is described as generous, with extended paid time for new parents and added supports like adoption and fertility benefits. Family-oriented benefits sit alongside flexible time off and other core perks.

Learn more about Tanium's Compensation & Benefits →

Tanium Insights

What's It Like to Work at Tanium? Tanium Culture & Values Tanium Career Growth & Development What's the Work-Life Balance Like at Tanium? Tanium Leadership & Management Tanium Company Growth, Stability & Outlook

View all jobs at Tanium

View Tanium Profile

Report Job

Am I A Good Fit?

beta

Get Personalized Job Insights.

Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company

HQ: Bellevue, WA

2,000 Employees

Year Founded: 2007

What We Do

Tanium delivers the industry’s only true real-time cloud-based endpoint management and security offering. Its platform is real-time, seamless, and autonomous, allowing security-conscious organizations to break down silos between IT and Security operations that results in reduced complexity, cost, and risk.