AI2IO, a premier engineering and consulting firm specializing in innovative, mission-critical solutions across hyperscale data centers and advanced infrastructure, is seeking a Cloud Security Administrator. This internal-facing role is the frontline defense for securing the organization’s cloud environment, ensuring resilience and compliance with frameworks like SOC 2 and NIST.

This is a Full-time, Remote position available anywhere in the United States. Salary is competitive and designed to out-compete typical job board ranges for well-qualified candidates.

Job Summary and Security Mandate

The Cloud Security Administrator is responsible for managing identity, access, and security policies across the cloud infrastructure, data, and applications, with a heavy emphasis on the Azure/Microsoft ecosystem. This role requires continuous monitoring, proactive configuration hardening, incident response, and strong collaboration with IT and DevOps teams.

Essential Functions:

• Security Controls & Compliance:
  • Implement and enforce security baselines and encryption standards.
  • Align cloud configurations with major compliance frameworks (SOC 2, ISO 27001, NIST 800-171, FedRAMP) to meet regulatory requirements.
• Monitoring & Incident Response:
  • Continuously monitor cloud environments using tools like Microsoft Defender for Cloud and SIEM platforms (e.g., Microsoft Sentinel).
  • Investigate and respond to security alerts and incidents, coordinating remediation and performing post-incident analysis.
• Configuration Hardening:
  • Ensure all cloud components (VMs, containers, networks, storage) are configured securely following best practices (e.g., firewalls, patch management, network segmentation).
  • Regularly audit and harden cloud configurations, addressing vulnerabilities promptly.
• Data Protection:
  • Manage and implement data protection measures, including backup/recovery, Data Loss Prevention (DLP) policies, and encryption for data at rest and in transit.
  • Enforce data retention and access controls to protect sensitive information.
• Automation & Policy Enforcement:
  • Utilize automation tools and scripts to enforce security policies and perform compliance checks (e.g., Azure Policy or CI/CD integrations).
  • Develop and maintain security playbooks and automated responses for common cloud security events.

Position Requirements and Technical Qualifications

The successful candidate must have significant hands-on experience with Microsoft’s cloud security tools, identity management, and compliance frameworks, backed by substantial IT and security experience.

• Experience (Mandatory):
  • Bachelor’s degree plus 5+ years of progressive IT or information security experience (with at least 2 years in a cloud security administration or similar role).
  • Strong hands-on experience with cloud security tools and platforms (especially Microsoft Defender suite and Azure security services).
  • Solid knowledge of Entra ID (Azure AD) administration, including IAM, RBAC, Conditional Access policies, and privilege management.
• Cloud & Compliance Proficiency:
  • Familiarity with securing cloud infrastructure in Azure or similar cloud environments (VMs, containers, storage, networks, Key Vault).
  • Experience securing Microsoft 365 services (Exchange Online, SharePoint, Teams) and Power Platform components.
  • Working knowledge of industry security frameworks (SOC 2, ISO 27001, NIST CSF/800-171, CIS) and their application in cloud environments.
  • Experience with SIEM/SOAR tools (Microsoft Sentinel or equivalent) and incident response processes.
• Certifications: Relevant security certifications (e.g., Microsoft Azure Security Engineer, CCSP, CISSP, or similar) are a plus.
• Travel: Up to 5% travel may be required.