Cloud Security Engineer

Cloud Security Engineer

Requirements

• Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent work experience
• 5+ years of experience in information security, with at least 3 years focused on cloud security
• Hands-on experience securing environments in at least two major cloud platforms (AWS, Azure, GCP)
• Experience implementing and managing Cloud Security Posture Management (CSPM) solutions
• Strong understanding of cloud service provider security services and features
• Knowledge of compliance frameworks and security standards (CIS, NIST, ISO, etc.)
• Experience with infrastructure-as-code and security-as-code implementations
• Familiarity with containerization technologies and their security implications
• Strong scripting and automation skills (Python, PowerShell, Bash, etc.)

Responsibilities

• Lead the implementation, refinement, and optimization of Cloud Security Posture Management (CSPM) solutions across our multi-cloud environment
• Define, implement, and maintain cloud security baseline configurations for AWS, Azure, and Google Cloud Platform
• Establish continuous monitoring of cloud security posture and detect potential drift from secure baselines
• Design and implement real-time alerting for cloud security issues and misconfigurations
• Evaluate, recommend, and implement remediation capabilities for common cloud security issues
• Develop comprehensive cloud security guidance and best practices tailored to each cloud platform
• Establish automated compliance monitoring against industry standards (CIS, NIST, etc.) and internal policies
• Create and maintain reporting dashboards and metrics
• Work with teams to ensure cloud environments meet regulatory requirements
• Identify security architecture patterns for cloud deployments that meet compliance requirements
• Collaborate with cloud engineering, DevOps, and application teams to implement security controls
• Implement cloud-native security services and third-party security solutions
• Review infrastructure-as-code templates and patterns for security concerns
• Provide cloud security expertise for new cloud initiatives and migrations
• Educate development and operations teams on cloud security best practices
• Collaborate with the Security Champions program to promote cloud security awareness
• Document cloud security architecture, configurations, and processes
• Stay current with emerging cloud security threats, tools, and techniques
• Contribute to the overall security program maturity

Preferred Qualifications

• Security certifications (CCSP, AWS Security Specialty, Azure Security Engineer, GCP Professional Cloud Security Engineer, etc.)
• Experience with cloud-native security tools and services
• Knowledge of identity and access management across cloud platforms
• Experience with security monitoring, logging, and SIEM integration
• Background in DevSecOps practices and tooling
• Experience implementing Zero Trust architectures in cloud environments
• Knowledge of threat modeling and secure architecture design