Senior Cloud Security Engineer

About Agoda

At Agoda, we bridge the world through travel. Our story began in 2005, when two lifelong friends and entrepreneurs, driven by their passion for travel, launched Agoda to make it easier for everyone to explore the world.

Today, we are part of Booking Holdings [NASDAQ: BKNG], with a diverse team of over 7,000 people from 90 countries, working together in offices around the globe. Every day, we connect people to destinations and experiences, with our great deals across our millions of hotels and holiday properties, flights, and experiences worldwide.

No two days are the same at Agoda. Data and technology are at the heart of our culture, fueling our curiosity and innovation. If you’re ready to begin your best journey and help build travel for the world, join us.

We are looking for a hands on Senior Security Engineer to secure our cloud and platform environments. This role works closely with engineering teams and focuses on building, reviewing, and operating security controls using Infrastructure as Code, Kubernetes, and custom security services written in Go and TypeScript.

Key Responsibilities:

Secure Cloud Deployment:

• Design, implement, and manage secure cloud deployments across AWS and GCP environments using Terraform.
• Kubernetes & GitOps Security: Deploy and manage both internal and third‑party security products within the Kubernetes ecosystem.
• Work with GitOps workflows using tools like Argo CD and Flux, and Helm charts.
• Security Automation & Tooling: Design and build security tooling and services using Go and TypeScript.
• Misconfiguration Management: Proactively identify, analyze, and remediate cloud misconfigurations.
• Cloud Architecture Guidance: Provide guidance to Engineering teams on secure architecture.
• Threat Detection & Response: Build and optimize cloud-native detection rules and alerting pipelines to monitor for suspicious activities within the cloud and container workloads.
  
  

  Looking to advance your Cyber Security career with relocation support? Explore Cyber Security Jobs with Relocation Packages that include comprehensive packages to help you move and settle in your new role.

Required Skills & Experience:

• 8+ years of experience in security engineering, cloud security, or platform engineering roles.
• Hands-on experience securing production workloads in AWS and GCP.
• Strong experience designing and securing Infrastructure as Code using Terraform.
• Deep understanding of Kubernetes security, including troubleshooting Helm deployments and GitOps-based workflows.
• Strong programming skills in Go and TypeScript, with Python used for automation where appropriate.
• Experience embedding security controls into CI/CD pipelines.
• Certifications (Required) Certified Kubernetes Administrator (CKA) Certified Kubernetes Security Specialist (CKS) Certifications (Preferred) AWS Certified Security
• Specialty Google Professional Cloud Security Engineer HashiCorp Certified: Terraform Associate
• Nice-to-Have Experience with Policy-as-Code frameworks such as Open Policy Agent (OPA).
• Experience securing service mesh environments (Istio). Background in software engineering or platform engineering before moving into security.
  
  

Discover our full range of relocation jobs with comprehensive support packages to help you relocate and settle in your new location.

Please review our Hiring Process Guidelines before your interview — click here to learn how interviewing at Agoda works.

Discover More About Working At Agoda

• Agoda Careers https://careersatagoda.com
• Facebook https://www.facebook.com/agodacareers/
• LinkedIn https://www.linkedin.com/company/agoda
• YouTube https://www.youtube.com/agodalife
  
  

Equal Opportunity Employer

At Agoda, we pride ourselves on being a company represented by people of all different backgrounds and orientations. We prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation. Employment at Agoda is based solely on a person’s merit and qualifications. We are committed to providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics.

We will keep your application on file so that we can consider you for future vacancies and you can always ask to have your details removed from the file. For more details please read our privacy policy.

Disclaimer

We do not accept any terms or conditions, nor do we recognize any agency’s representation of a candidate, from unsolicited third-party or agency submissions. If we receive unsolicited or speculative CVs, we reserve the right to contact and hire the candidate directly without any obligation to pay a recruitment fee.