Our vision at petco is healthier pets. Happier people. Better world. We’re making things better for pets, people, and the planet through our think adoption first philosophy, the petco foundation and other important initiatives that focus on putting animals first, educating pet parents and reducing our carbon footprint. The journey starts with knowledgeable, passionately engaged associates who are proud to recommend petco as a place to work, who believe in our vision and who are committed to delivering a superior customer experience.from our retail stores and our network of distribution centers to our corporate offices, you'll work with others who share your values and commitment. We seek individuals who are passionate about animal welfare, have great people skills and are driven to grow and advance in their careers with us. Our ongoing growth is creating exceptional opportunities for professional development and personal enrichment throughout our organization.role overviewwe are seeking a security-minded cloud security engineer to join the petco information security team. This role will directly support the application security function while collaborating with cloud infrastructure, operations, and engineering teams to improve the security posture of our cloud environments.the ideal candidate will have deep expertise in aws security and the ability to advise on secure architecture, remediation of misconfigurations, and enforcement of security guardrails in a decentralized, infrastructure-as-code environment. While aws is the primary focus, experience in gcp and azure is a plus. We expect strong aws practitioners will be able to go into cross-cloud responsibilities over time.responsibilities- define and maintain cloud security guardrails across aws accounts, with exposure to azure, gcp, and oracle environments.
- act as a trusted partner to appsec, cloud infrastructure, and operations teams to improve cloud governance, enable secure development, and drive remediation of cloud security issues.
- review findings from security scanners (e.g., cspm, iac analysis) and provide practical remediation guidance.
- contribute to the design and rollout of secure terraform patterns and cloud-native controls (e.g., scps, iam policies, config rules).
- advise teams on secure design patterns related to identity, network architecture, secrets, encryption, and logging.
- support security reviews for cloud-hosted applications and services.
- help assess and implement tools for cspm and workload protection.
- stay current on cloud-native threats, misconfiguration trends, and emerging technologies.qualifications- 3–5 years of hands-on experience in cloud security or cloud engineering roles.
- strong practical knowledge of aws security services (e.g., iam, vpc, guardduty, kms, security hub, scps, cloudtrail).
- solid understanding of cloud iam, least privilege principles, and account-level controls.
- experience with terraform and infrastructure-as-code workflows.
- ability to analyze cloud misconfigurations and clearly articulate how to fix them.
- understanding of how security integrates into ci/cd pipelines and developer workflows.
- excellent communication and collaboration skills — able to work cross-functionally and influence.preferred skills- exposure to gcp, azure, or oracle cloud platforms.
- cloud certifications (e.g., aws certified security – specialty, gcp professional cloud security engineer, azure security engineer associate).
- experience with cloud security tools like cspm or custom alerting pipelines.
- familiarity with security frameworks (e.g., nist, cis, iso 27001) and how they apply to cloud environments.
- scripting experience (e.g., python, bash) for automation or remediation.
- bachelor’s degree in cybersecurity, computer science, or related discipline.