Senior Product Security Engineer, Cloud

MongoDB is seeking a Senior Product Security Engineer to drive cloud security initiatives for MongoDB Atlas and the cloud platforms that power it across AWS, GCP, and Azure. You’ll be a senior individual contributor in the MongoDB Product Security organization, a diverse team responsible for the security of all customer‑facing products, including Atlas, self‑managed/server, and a broad ecosystem of related services and tools.

Within Product Security, the Cloud Security team focuses specifically on Atlas control plane and data plane environments and the underlying cloud platforms, partnering closely with Atlas engineering, SRE, other security engineering teams, and global security operations to build and defend secure‑by‑default, large‑scale, multi‑tenant cloud services.

This role can be based in our Dublin office (hybrid working model) or remotely in Ireland.

Requirements

7+ years of experience in application, product, and/or cloud security for large-scale, customer-facing systems, ideally in a multi-cloud or SaaS environment

Strong, hands-on experience with cloud security architecture on at least one major cloud provider (AWS, GCP, or Azure), with familiarity across:

VPC/networking (segmentation, egress controls, private connectivity)

IAM (roles, policies, workload identity, cross-account access)

Keys and secrets (KMS, HSMs, secret management systems)

Container/orchestration security (e.g., Kubernetes, ECS, serverless)

Multi-tenant control planes and blast-radius reduction patterns.

Solid security architecture fundamentals: able to design and review end-to-end systems, reason about threat models and risk trade-offs, and recommend appropriate controls across application, data, and infrastructure layers

Ability to read and reason about code (e.g., Go, Java, or similar languages) and familiarity with IaC (Terraform/CloudFormation), CI/CD, and security automation tooling (e.g., CSPM, IaC scanning, SAST, SCA)

Demonstrated experience leading security reviews and projects in partnership with engineering teams (e.g., threat modeling, design reviews, targeted testing) and turning findings into pragmatic, prioritized remediation work

Excellent written and verbal communication skills; you can explain complex cloud and product security issues in a way that builds trust with engineers, leaders, and, when needed, customers

A strong sense of ownership and follow-through, paired with a collaborative working style--you bring others along, create space for their input, and offer specific, actionable feedback

In this role you will…

Co-own and drive Atlas cloud security initiatives such as control plane hardening, cloud security baselines, identity and access patterns, customer account protections, and data-plane protections for multi-tenant environments

Perform and lead security reviews for Atlas features and platform changes in cloud environments, including architecture review, threat modeling, and targeted testing, with an emphasis on pragmatic, actionable guidance

Design and review cloud architectures across AWS, GCP, and Azure--covering networking, IAM, secrets management, and service-to-service access--and help define secure reference architectures that can be reused by Atlas teams

Embed security into platforms and guardrails by working with platform, SRE, and other security engineering teams to implement policies and automation (e.g., policy-as-code, secure defaults, pre-deployment checks) that make the secure path the easiest path for developers

Use CSPM, infrastructure vulnerability data, and IaC scanning to identify meaningful posture gaps in Atlas environments and drive concrete hardening work with clear ownership, coverage, and success metrics

Partner with Detection & Response, SRE, and other security teams to bring product and cloud context to incidents, threat hunts, and posture investigations, and to design new detections tied to Atlas and its cloud footprint

Influence roadmaps and priorities by translating