Engineering

What We Do

At Goldman Sachs, our Engineers don’t just make things – we make things possible.  Change the world by connecting people and capital with ideas.  Solve the most challenging and pressing engineering problems for our clients.  Join our engineering teams that build massively scalable software and systems, architect low latency infrastructure solutions, proactively guard against cyber threats, and leverage machine learning alongside financial engineering to continuously turn data into action.  Create new businesses, transform finance, and explore a world of opportunity at the speed of markets. Goldman Sachs Engineers are innovators and problem-solvers, building solutions in Artificial Intelligence, risk management, big data, mobile and more.

Cloud Platform

As part of Core Engineering at Goldman Sachs, the Cloud Platform team is responsible for enabling the use of public cloud services across the firm. You will be working as part of multi-disciplinary team responsible for researching, architecting and building a cutting-edge platform that enable Goldman Sachs teams to deploy and manage services in public cloud safely and securely. We are at an early stage of modernizing our services around cloud native principles, and you will be directly contributing to platform that programmatically enforces safety, security and compliance of services and enables engineers to innovate faster.

The organization is seeking highly collaborative, creative, and intellectually curious engineers who are passionate about developing and implementing cutting-edge cloud computing solutions. The ideal candidate will thrive in a DevOps culture and contribute to customer-centric product development. They will work closely with cross-functional teams, and will be creative collaborators who evolve, adapt to change and thrive in a fast-paced global environment.

Key Responsibilities:

Cloud Security Architecture & Platform Leadership:

• Design, implement, and maintain secure cloud architecture aligned with NIST frameworks and industry-recognized cloud security standards, ensuring compliance, resilience, and least-privilege access across cloud environments
• Lead deployment and integration of cloud security posture management platforms with enterprise services including risk management systems, monitoring infrastructure, security information and event management (SIEM), and compliance frameworks
• Architect policy-as-code frameworks for infrastructure security controls, enabling shift-left security and automated compliance validation across multi-cloud environments
• Define and implement secure-by-default infrastructure patterns for cloud account provisioning and service onboarding

Technical Leadership & Expertise:

• Demonstrates thought leadership: Guides and upskills other engineers and clients in cloud best practices; demonstrates expertise with automation and infrastructure as code (IaC)
• Deep understanding of AWS services and how to leverage them
• Lead strategic initiatives for cloud-native authentication and authorization, including certificate-based service identity frameworks and fine-grained access control systems
• Partner with middleware and platform engineering teams on secure messaging infrastructure migration from on-premise to cloud-native solutions
• Provide regional timezone coverage for cloud access and security platform operational issues, participating in 24/7 follow-the-sun support model

DevOps & Platform Engineering:

• Past enterprise level experience in DevOps, Software, Infrastructure or Site Reliability Engineering
• Proficient in infrastructure as code practices using technologies such as CDK, Terraform, AWS CloudFormation, and/or SaltStack
• Experience building CI/CD pipelines from scratch with integrated security gates and automated policy enforcement
• Hands-on experience developing and improving all phases of the software development/delivery lifecycle
• Strong grasp of container technology and container orchestration 

Observability & Operational Excellence:

• Proficient in one or more enterprise scale observability tools such as Splunk, Datadog, FluentD, ELK
• Experience maintaining and improving the reliability of applications and infrastructure
• Implement SLO/SLI frameworks, monitoring strategies, and automated remediation workflows
• Lead root cause analysis for security and access control incidents, implementing preventive measures

Collaboration & Documentation:

• Ability to document solutions, cloud architectural patterns, and best practices to ensure that clients have guidance as needed
• Proven ability to partner with cloud hyperscale partners to define and troubleshoot cloud architectures and service enablements
• Establish trusted partnerships with Tech Risk, Compliance, Platform Engineering, and business unit stakeholders
• Mentor Associate and Analyst-level engineers on platform internals, security best practices, and operational excellence

Software Development & Architecture:

• Solid understanding of Microservices and APIs
• Design and implement automated workflows for security finding management, remediation tracking, and compliance reporting
• Build self-service capabilities for business units to manage security posture and access controls
• Eager to problem solve and troubleshoot issues that may arise day to day

Basic Qualifications:

• Minimum 6+ years of relevant professional experience with at least 3+ years of familiarity with AWS services
• B.S. or higher in Computer Science (or equivalent work experience)
• Familiarity with disciplines of enterprise software development such as configuration and release management, source code and version controls along with operating considerations such as monitoring
• Experience in a consultative/advisory role with demonstrated ability to influence executive-level stakeholders
• Experience performing and/or leading root cause analysis following incidents
• Experience in Security or Data engineering preferably in an SRE/DevOps environment
• Practiced in Java, Python, Javascript / Typescript / Node
• Proficient using relational and NoSQL database technologies
• Strong written and verbal communication skills with ability to present to senior audiences
• Ability to establish trusted partnerships with product leads and executive level stakeholders
• Comfort with agile operating model and DevOps culture
• Experience with leading large-scale platform migrations and security transformations
• Experience with authentication protocols (OAuth 2.0, OIDC, SAML, mTLS, certificate-based authentication)
• Knowledge of regulatory compliance frameworks (SOC 2, ISO 27001, NIST) and financial services security requirements

About Goldman Sachs

At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. 

We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has several opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.  

We’re committed to finding reasonable accommodation for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html

Salary Range 
The expected base salary for this Seattle, Washington, United States-based position is $150000-$250000. In addition, you may be eligible for a discretionary bonus if you are an active employee as of fiscal year-end.

Benefits 
Goldman Sachs is committed to providing our people with valuable and competitive benefits and wellness offerings, as it is a core part of providing a strong overall employee experience. A summary of these offerings, which are generally available to active, non-temporary, full-time and part-time US employees who work at least 20 hours per week, can be found here.

{'minSalary': 150000.0, 'maxSalary': 250000.0, 'currency': 'USD', '__typename': 'RoleCompensationGraphQlDTO'}