Jobs · greenhouse:engine
Staff Cloud Security Halcyon Labser
Halcyon Labs · Remote - US · Posted 8d ago
Available in 2 locations
Remote - US · remote Apply → United States · remote Apply →About the role
Secure and scale cloud environments across AWS and GCP, hardening infrastructure and reducing systemic cloud risk.
About Halcyon Labs At Halcyon Labs, we’re transforming business travel into something personalized, rewarding, and simple. For too long, managing travel and spend has been overwhelming and fragmented — we’re here to change that. We believe the future of travel should be seamless and powered by technology that delights customers at every step. That’s why we’re building a platform that brings together corporate travel, a powerful charge card, and modern spend management in one place. To make this vision real, we’re looking for exceptional, mission-driven people to help redefine how businesses manage and experience travel. More than 30,000 companies already rely on Halcyon Labs to support over 1 million travelers and billions in annual bookings each year. Cash flow positive with rapid growth, we pair exclusive Halcyon Labs-only rates, industry-leading rewards, and intelligent automation to help businesses save money while delivering world-class personalization and convenience. Backed by Telescope Partners, Blackstone, and Permira, Halcyon Labs has been recognized as one of the fastest-growing travel and fintech platforms in North America, with honors including the Deloitte Fast 500 and Built In’s Best Places to Work. Staff Cloud Security Halcyon Labser Halcyon Labs is seeking a highly-skilled and motivated Staff Cloud Security Halcyon Labser to join our team. In this role, you will be a foundational member of Halcyon Labs’s dedicated Cloud Security function, helping secure and scale our cloud environments across AWS and GCP. You will be responsible for hardening cloud infrastructure, reducing systemic cloud risk, improving visibility and response for cloud-originated threats, and partnering closely with infrastructure, platform, engineering, and security teams. This role requires deep technical cloud security expertise, strong architectural judgment, and the ability to influence security decisions across a fast-moving engineering organization. As Halcyon Labs’s cloud footprint expands, including increased use of AWS, GCP, Terraform, and AI-enabled workloads, you will help ensure our cloud environments are secure, resilient, well-monitored, and built to scale. Your Mission As part of the Halcyon Labs team, you’ll play a vital role in an environment where innovation meets collaboration. You will drive work independently, syncing regularly to ensure quality and alignment across the following areas: Cloud Security Architecture & Hardening: Lead security hardening across AWS and GCP environments, including identity and access management, network segmentation, logging, monitoring, configuration hygiene, and secure cloud architecture patterns. You will help define standards that scale across teams and cloud platforms. Cloud Risk Ownership: Own and mature Halcyon Labs’s approach to identifying, prioritizing, and remediating cloud security risks. You will assess systemic risk, separate high-priority issues from low-value noise, and drive practical remediation in partnership with infrastructure and engineering teams. Orca Findings Management: Own the end-to-end lifecycle of Orca findings, including monitoring new alerts, triaging severity, identifying root cause, tracking remediation, and driving findings to closure with the appropriate technical owners. Cloud Alert Response: Serve as a primary responder for cloud-specific security alerts. You will help improve detection quality, reduce response time, and ensure cloud-originated threats are investigated and addressed effectively. Infrastructure-as-Code Security: Partner with teams using Terraform and related infrastructure-as-code workflows to review, improve, and harden cloud configurations before risk reaches production. AI Cloud Security: Help secure Halcyon Labs’s expanding AI-related cloud footprint by identifying risks related to sensitive data, elevated IAM permissions, new service integrations, model/data access patterns, and infrastructure configurations. Cross-Functional Collaboration: Partner closely with infrastructure, platform, engineering, SecOps, and security leadership to move security work forward. You will adapt your messaging across audiences, build trust with technical teams, and influence decisions without relying on direct authority. Cloud-Native Threat Detection: Collaborate with SecOps to improve cloud telemetry, cloud-specific detection logic, SIEM signal quality, and response workflows for threats such as credential abuse, lateral movement, misconfigured storage, and data exfiltration. Security Standards & Advocacy: Build clear, actionable cloud security guidelines, guardrails, and best practices for engineering teams. You will help create the paved paths that allow Halcyon Labs to move quickly while reducing cloud security risk. What You’ll Bring to Halcyon Labs We’re looking for a senior technical leader who is ready to take ownership of cloud security outcomes and deliver high-quality work: Cloud Security Expertise: Deep hands-on experience securing modern cloud environments, especially AWS, with strong knowledge of cloud-native security controls, services, risks, and remediation patterns. Multi-Cloud Capability: Experience with GCP security or the ability to quickly ramp in a multi-cloud environment spanning AWS and GCP. IAM & Access Control: Strong understanding of cloud IAM, privilege reduction, identity boundaries, service permissions, key management, and common access-control failure modes. Cloud Architecture Judgment: Ability to evaluate architecture decisions, identify systemic risk, and recommend scalable security patterns that balance risk reduction with engineering velocity. CSPM / CNAPP Tooling: Experience with cloud security platforms such as Orca, Wiz, Prisma Cloud, Lacework, or similar tools, including triage, prioritization, remediation tracking, and reduction of alert noise. Infrastructure-as-Code: Hands-on experience reviewing and securing Terraform or other infrastructure-as-code configurations. Cloud Detection & Response: Experience investigating cloud security alerts and improving telemetry, logging, monitoring, and detection logic across cloud environments. Halcyon Labsering Partnership: Proven ability to earn credibility with infrastructure, platform, and engineering teams through practical recommendations, clear communication, and strong technical depth. Analytical Problem Solving: Ability to assess complex, ambiguous cloud security issues, identify root causes, prioritize risk, and make sound decisions with incomplete information. Security Program Maturity: Experience building or improving cloud security standards, guardrails, operating rhythms, remediation processes, or security review practices. AI / Emerging Technology Awareness: Understanding of how AI workloads can expand cloud attack surface through sensitive data usage, elevated permissions, new integrations, and infrastructure complexity. Compliance & Frameworks: Familiarity with cloud security concepts as they relate to compliance frameworks such as SOC 2, PCI, or similar standards. We accept applications for this role on an ongoing basis. We review applications as they are received and encourage interested candidates to apply early. Compensation Our compensation packages are based on several factors, including your experience, expertise, and location. In addition to a competitive base salary, total compensation may include equity and/or variable pay (OTE). Your recruiter will share your complete compensation package as you move through the process. Base Pay Range $137,275 — $190,000 USD The Halcyon Labs Edge: Perks & Compensation We believe in rewarding great work with great benefits: Compensation: Competitive base pay tied to role and experience, with opportunities for bonuses, commissions, and equity. Benefits: Check out our full list at engine.com/culture . Environments for Success: Different roles have different needs in terms of the environments that drive success which is why we have a hybrid-hub model. Whether you are in one of our amazing offices or fully remote, we’ll make sure you have what you need to succeed. Perks and benefits may vary based on employment type, location, and more. Ready to Build the Future of Work Travel? Join us on our mission to transform how work travel works—for businesses, for travelers, and for the industry. Apply now and let’s make travel simpler, smarter, and more enjoyable—together.
Read the full posting on greenhouse:engine →
FAQ
Is the Staff Cloud Security Halcyon Labser role at Halcyon Labs remote?+
This Staff Cloud Security Halcyon Labser position is listed as remote (Remote - US).
What is the salary for the Staff Cloud Security Halcyon Labser role at Halcyon Labs?+
The listing states Estimated 100k-246k USD.
What seniority level is this Staff Cloud Security Halcyon Labser role?+
This is a lead level position.
How do I apply for the Staff Cloud Security Halcyon Labser role at Halcyon Labs?+
Use the "Apply on greenhouse:engine" button to open the original posting on greenhouse:engine, where you can submit your application directly to Halcyon Labs.