Customers trust the Alation Data Intelligence Platform for self-service analytics, cloud transformation, data governance, and AI-ready data, fostering data-driven innovation at scale. With more than $340M in funding – valued at over $1.7 billion and nearly 600 customers, including 40% of the Fortune 100 — Alation helps organizations realize value from data and AI initiatives. Alation has been recognized in 2024 as one of Inc. Magazine's Best Workplaces for the fifth time, a testament to our commitment to creating an inclusive, innovative, and collaborative environment. Collaboration is at the forefront of everything we do. We strive to bring diverse perspectives together and empower each team member to contribute their unique strengths to live out our values each day. These are: Move the Ball, Build for the Long Term, Listen Like You’re Wrong, and Measure Through Customer Impact. Joining Alation means being part of a fast-paced, high-growth company where every voice matters, and where we’re shaping the future of data intelligence with AI-ready data. Join us on our journey to build a world where data culture thrives and curiosity is celebrated each day! Job Description: Alation is seeking a Cybersecurity Engineer to join our security team. The Cybersecurity Engineer plays a strategic role in fortifying the security of our Cloud Service and internal infrastructure. This role goes beyond monitoring, it focuses on building, automating, and scaling security solutions that align with our growing cloud-native ecosystem. The engineer will take ownership of designing and deploying proactive security controls, integrating secure development practices, and improving our detection, response, and security hardening efforts. This role will collaborate closely with cross-functional teams, including Engineering, Cloud, SRE, and other relevant departments, to implement robust security controls and ensure adherence to established security policies. You’ll work cross-functionally to architect and implement security solutions aligned with industry standards such as ISO 27001, NIST 800-53, SOC 2, and FedRAMP. One more thing...We work in a hybrid model—you’ll join us in our Redwood City office to collaborate, connect, and enjoy a team atmosphere! What You’ll Do: Architect and implement scalable security controls for cloud-native and hybrid environments (primarily AWS). Automate vulnerability detection, remediation workflows, and security guardrails using Infrastructure as Code (IaC) tools like Terraform. Conduct in-depth threat modeling, cloud security reviews, and participate in the Secure Development Lifecycle (SDLC). Lead vulnerability and risk remediation efforts in coordination with Engineering, Cloud and SRE teams. Design and monitor baseline security configurations for Kubernetes (EKS) and containerized workloads. Extend security visibility by integrating with SIEM (e.g., Splunk, Datadog, TrendMicro) and CSPM tools. Develop and operationalize tools to enforce policy-as-code and continuous compliance checks (CIS Benchmarks, FedRAMP). Act as a security SME in cloud and application architecture discussions. Participate in business continuity and disaster recovery (BCP/DR) planning and testing. Support FedRAMP compliance initiatives through technical implementation and documentation. What You'll Need: Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equivalent experience. 5+ years of hands-on experience in cloud security engineering, DevSecOps, or application security. Strong AWS security experience (IAM, VPC, Security Groups, KMS, GuardDuty, etc.). Deep understanding of CI/CD pipelines and secure SDLC principles. Experience with IaC tools: Terraform, CloudFormation, etc. Hands-on work experience in one or more scripting languages: Python, Bash, Go. Familiarity with container security (EKS, Docker, runtime protections). Experience with vulnerability management tools such as Trivy, Snyk, or Inspector. In-depth knowledge of OWASP Top 10, SANS Top 25, and modern application security threats. Experience managing Linux/Unix environments and securing workloads. Familiarity with compliance frameworks such as ISO 27001, NIST 800-53, FedRAMP, and SOC 2. Security certifications such as AWS Security Specialty, GCP Professional Cloud Security Engineer, or CISSP are highly desirable. Nice to Have: Experience with CNAPP, CSPM, or CIEM tools. Understanding of Zero Trust architecture and identity-centric security (IAM, SSO, SAML, OIDC). Exposure to security in multi-cloud environments. #WR-1 Compensation Pay Range: Salary Information The base salary range is specific to the United States. The salary of the final candidate selected for this role will be set based on a variety of factors, including but not limited to internal equity, experience, education, work location, specialty and training. If the final candidate has a different level of experience, the base salary target range may be lower or higher than what is published. Alation, Inc. is an Equal Employment Opportunity employer. All qualified applicants will receive consideration for employment without regards to that individual’s race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender identity, age, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. The Company will strive to provide reasonable accommodations to permit qualified applicants who have a need for an accommodation to participate in the hiring process (e.g., accommodations for a job interview) if so requested. This company participates in E-Verify. Click on any of the links below to view or print the full poster. E-Verify and Right to Work. Our growth is creating great opportunities! Our team is expanding, and we want to hire the most talented people we can. Continued success depends on it! So once you've had a chance to explore our current open positions, apply to the ones you feel suit you best and keep track of both your progress in the selection process, and new postings that might interest you! Thanks for your interest in working on our team!! Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. Our founders have come together from different backgrounds: business, engineering, and design. This unique mix from our founding team is important to the Alation culture story. Today, our team consists of creators and communicators with varied backgrounds - from Stanford, to the Indian Institute of Technology, big companies and one-person startups, the United States, and abroad. We continue to seek ever more diverse perspectives as we grow. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, name, religion, color, national origin, gender identity and expression, sexual orientation, age, marital status, veteran status, or disability status. Why Alation? Market-Leading Data Catalog Provider High-growth, collaborative environment with diverse and inclusive teams Continuous learning, enrichment and development opportunities Competitive pay and health offerings including commuter benefits Flexible time off to relax and recharge
