As a Senior Cloud Platform Security Engineer at CoStar, you will join the product platform security engineering team to build and operate centralized security controls using infrastructure as code, scripting, and API integrations. Your daily tasks include enforcing security posture across AWS, GCP, and Azure through preventative and detective controls, leading Kubernetes workload protection strategies, securing AI-powered features, integrating automated scanning tools into CI/CD pipelines, and mentoring product dev teams on secure coding practices. You will work with technologies such as Python, Ansible, Terraform, AWS GuardDuty, EKS, OPA/Gatekeeper, Falco, Wiz, Datadog, Prisma Cloud, Orca, Upwind, Snyk, and more. The role involves scaling security across 75 web applications in a consistent manner, ensuring robustness against AI threats, and driving validation methodology across acquisitions and new environments.
Skills
AWS
GCP
Azure
Kubernetes
EKS
CI/CD
Terraform
Python
Ansible
CloudFormation
AI
IaC
SCPs
IAM
Wiz
GuardDuty
SecurityHub
OPA/Gatekeeper
Falco
Datadog
Prisma Cloud
Orca
Snyk
SBOM
zero trust principles
What you'll do
Enforce security posture across AWS, GCP, and Azure through preventative and detective controls.
Lead workload protection strategy for EKS clusters including runtime monitoring and secrets management.
Secure AI-powered features by building guardrails and detection patterns to prevent unauthorized tool use.
Integrate automated scanning tools into CI/CD pipelines and implement IaC solutions for security automation.
Mentor product dev teams on secure coding practices and guide them on risk remediation proactively.
What we're looking for
6+ years of hands-on security engineering with expertise in securing cloud-native environments (AWS preferred).
Deep knowledge and experience in Kubernetes platform hardening or monitoring, CI/CD pipelines, containerized application deployments.
Proven ability to integrate automated scanning tools into CI/CD pipelines and implement IaC solutions for secure software delivery.
Experience securing AI-powered applications, including threat modeling and implementing security guardrails for new AI surfaces.
Strong scripting skills in Python, PowerShell, Ansible, CloudFormation, Terraform or similar languages for infrastructure automation.
Familiarity with cloud security tools like AWS GuardDuty, Security Hub, EKS, OPA/Gatekeeper, Falco, Wiz, and experience with software supply chain security practices.
Market check
Salary context
This listing doesn't show a salary. Similar roles on FindRole typically pay
$119,782–$200,000.
Peer median band
$119,782–$200,000
Median floor and ceiling across peers.
Typical midpoint (25–75%)
$141,981–$195,100
Middle half of comparable postings.
Based on 240 comparable postings.*
* 240 is the maximum number of comparable postings sampled.
Employer
About CoStar Group
CoStar Group is the leading provider of commercial real estate information, analytics, and online marketplaces, including CoStar, Apartments.com, and LoopNet platforms. Industry: Commercial Real Estate Data & Analytics
CoStar Group currently has
31 open roles
on FindRole.
Listed pay typically runs
$170,000–$222,000
across 11 roles with salary data.