Job Description

We are seeking a highly skilled Senior Information Security Engineer to take a strategic, high-impact role within our Global Cybersecurity Operations team. In this exciting position, you will own and mature critical security functions across both Azure and AWS — spanning vulnerability management, security posture reporting, external threat exposure monitoring, and cloud-native platform security controls.

You will deliver the visibility and insight that enables Intapp to proactively reduce risk across its global SaaS platform, working alongside Cloud Engineering, SRE, and SOC teams to translate security data into measurable, decisive action.

This role sits at the intersection of Cloud Engineering discipline and Security Operations — building the dashboards, tooling integrations, and platform controls that underpin our security programme’s effectiveness. Intapp Cybersecurity are a motivated group of experienced and highly capable security practitioners who lead our response to cloud risk management with a relentless focus and energy.

We are seeking a highly skilled Senior Cloud Security Engineer to take a lead role within our Cybersecurity Operations team. In this position, you will collaborate closely with Cloud Engineering and DevOps/SRE teams to deliver secure, automated, and scalable cloud environments across Azure and AWS. You will drive the maturity of our cloud security programme, shape secure engineering practices, and influence the protection of mission-critical SaaS services used globally. This role offers the opportunity to lead key security initiatives from design through to operational excellence. This high-impact role shapes the security of cloud platforms serving our global client base. You will influence architectural decisions, deliver automation at scale, and mature our cloud security programme.

About Intapp:

Intapp, based in Silicon Valley, is a leader in Vertical AI SaaS company, collaborating with over 2,550 professional and financial services firms globally. With 20+ years of industry expertise, Intapp's "Intelligence Applied" approach is transforming how businesses operate and leverages a strategic partner with Microsoft in delivering industry cloud solutions. The company culture promotes accountability, responsibility, and growth in a diverse, inclusive, and collaborative environment. Since going public in 2021, Intapp has expanded to over 1,600 employees globally with development centers in Palo Alto, Charlotte, Belfast, Berlin, and Lisbon.

About Lisbon:

Intapp is excited to expand its Research & Development center in Lisbon, aiming to add 50 new team members in the next year. Lisbon’s tech ecosystem and vibrant community make it an ideal destination for engineers and tech professionals from around the world. The city's reputation for innovation aligns perfectly with Intapp’s mission to leverage AI and cloud-based solutions. Lisbon offers an ideal work-life balance and quality of life, making it an attractive city for top talent. Joining Intapp in Lisbon provides a unique opportunity to help shape the new flagship development center and contribute to high-impact projects in a thriving tech environment.

Key Responsibilities:

Vulnerability Management & Risk Reporting

• Own the end-to-end vulnerability management lifecycle across Azure and AWS environments, including triage, prioritisation, and tracking through to remediation.

• Build and maintain Threat & Vulnerability Management (TVM) dashboards and Azure Data Explorer queries to surface real-time risk posture, remediation trends, and SLA adherence.

• Produce and maintain Monthly Security KPI Dashboards covering Microsoft Secure Scores, tooling coverage metrics, and vulnerability remediation performance across all cloud environments.

• Partner with Cloud Engineering and SRE teams to drive remediation of critical and high-severity findings within defined SLAs, escalating blockers and tracking progress to closure.

External Posture Management

• Manage and operationalise External Attack Surface Management (EASM) tooling (e.g. BlackKite) to continuously assess and monitor Intapp’s external threat exposure and digital footprint.

• Translate external posture findings into prioritised remediation actions and track outcomes rigorously through to closure, reporting status to security leadership.

• Monitor and report on third-party and supply chain risk signals surfaced through external posture tooling, contributing to broader vendor risk management processes.

Kubernetes Platform Security Controls

• Design, implement, and maintain policy-based security controls for Kubernetes workloads across Azure (AKS) and AWS (EKS) environments.

• Collaborate with DevOps and SRE teams to embed Kubernetes security controls into deployment pipelines and operational runbooks.

Microsoft Sentinel Integration & Security Monitoring

• Develop and maintain Microsoft Sentinel data connectors and platform integrations to ensure comprehensive security telemetry coverage across Azure and AWS.

• Maintain platform reliability, data source documentation, and continuous improvement of the Sentinel environment in close collaboration with the SOC team.

Required Experience & Skills

• 8+ years in Information Security, Cybersecurity, or related IT disciplines.

• Proven experience owning vulnerability management programmes, including TVM platforms (e.g. Microsoft Defender TVM, Qualys, Tenable, or similar).

• Strong Microsoft Azure security experience; AWS experience beneficial.

• Any hands-on experience with Kubernetes security controls (AKS and/or EKS); working knowledge of policy enforcement engines such as Kyverno or OPA/Gatekeeper is a definite plus.

• Microsoft Sentinel experience, including data connectors, analytics rules, workbooks, and KQL query development.

• Experience building security metrics, dashboards, and KPI reports — including Azure Data Explorer and/or Power BI.

• Familiarity with any External Attack Surface Management (EASM) tooling (e.g. BlackKite, Security Scorecard, or equivalent).

• Proficiency with scripting and automation languages (PowerShell, Azure CLI, Python, or equivalent).

• Managed and automated system security policies, patching and/or monitoring of cloud systems based on security best practices (IaaS, PaaS, SaaS).

• Ideally has designed, developed, implemented and/or monitored Identity and Access Management controls.

• Strong understanding of common security frameworks and standards: NIST, CIS, ISO 27001, OWASP.

• Ability to work effectively with a broad cross-section of technical and non-technical stakeholders to explain, prioritise, and enforce security measures.

What you will gain at Intapp:

Our culture at Intapp emphasizes accountability, responsibility, and growth. We support each other in a positive, open atmosphere that fosters creativity, approachability, and teamwork. We’re committed to creating a modern work environment that’s connected yet flexible, supporting both professional success and work-life balance. In return for your passion, commitment, and collaborative approach, we offer:

• A state-of-the-art facility with a fully stocked kitchen – only a 2-minute walk to/from Gare do Oriente.

• A hybrid work system supporting agile and flexible hours.

• Attractive compensation – including competitive base pay and performance-based variable pay.

• Equity/Stock in Intapp.Opportunity to travel to other development centers for product training and cross-site collaboration.

• One-time home office stipend.

• Generous paid parental leave (including adoptive leave), marriage leave, bereavement leave, carer's leave, and paid sick days.

• Meal allowance.

• Reimbursement for training towards continuing education.

Intapp provides equal employment opportunities to all qualified applicants and will make hiring decisions without regard to race, color, sex, sexual orientation, gender identity or expression, religion, national origin or ancestry, age, disability, marital status, pregnancy, protected veteran status, protected genetic information, political affiliation, or any other characteristic protected by federal, state or local laws.

Please note: Intapp will not hire through text message, social media, or email alone. We will never extend a job offer unless you have been contacted directly by an Intapp recruiter and have participated in the interview process which will generally consist of 3 or more virtual or in person meetings. Please note that Intapp only uses company email addresses, which contain “@intapp.com” or “@dealcloud.com” to communicate with candidates via email. Intapp will never ask for financial information of any kind or for any payment during the job application process. We post all legitimate job openings on the Intapp Career Site at https://www.intapp.com/working-at-intapp/ If you believe you were a victim of such a scam, you may contact your local authorities. Intapp is not responsible for any claims, losses, damages, or expenses resulting from scammers.