A Cloud Security Engineer is sought to play a pivotal role in safeguarding the organization’s cloud environments. The primary focus is to design, implement, and manage security solutions across multi-cloud infrastructure to ensure the confidentiality, integrity, and availability of data and services. This role champions a security-by-design approach, integrating robust controls and continuous monitoring.

This is a full-time, remote position. The budgeted salary range is $127,545 – $159,431 USD.

Core Responsibilities and Security Mandate

The Engineer will collaborate closely with compliance, IT, and DevOps teams to align deployments with regulations and best practices, integrating security throughout the software development lifecycle (SDLC) and CI/CD pipelines.

Major Duties:

• Architecture and Design: Design and implement secure cloud architectures and controls for infrastructure, applications, and data across multi-cloud environments (AWS, Azure, OCI).
• Policy and Enforcement: Develop and enforce security policies, standards, and best practices, ensuring alignment with compliance frameworks (HIPAA, SOC2, SOX).
• Security Automation: Work with DevOps teams to incorporate security automation, utilizing Infrastructure as Code (IaC) tools like Terraform/Ansible to enforce configurations.
• Tool Management: Configure, maintain, and review security tools, including Web Application Firewalls (WAFs), encryption, key management, and endpoint security solutions (CloudFlare, Crowdstrike).
• Monitoring and Response: Monitor and respond to security incidents using SIEM solutions (Splunk, Azure Sentinel) and conduct regular security assessments, vulnerability scans, and penetration tests.
• Guidance: Provide expert security guidance during engineering, IT, and application design reviews.

Required Experience and Technical Qualifications

The ideal candidate has significant experience in public cloud security, hands-on experience integrating security into CI/CD, and a strong understanding of compliance and foundational IT principles.

Experience and Technical Requirements:

• 5-7 years of experience in public cloud security, including AWS, Azure, and Oracle Cloud Infrastructure (OCI).
• DevSecOps: Hands-on experience with DevOps practices and security integration into CI/CD pipelines and automated security testing tools.
• IaC Proficiency: Working knowledge with Infrastructure as Code (IaC) tools like Terraform/Ansible.
• Security Tooling: Advanced experience deploying and customizing security tools such as WAFs, encryption, key management, FIM, and DLP solutions in Cloud environments.
• System Foundation: Strong engineering skills with Windows Server, DNS, DHCP, Active Directory, and network switching.
• Compliance: Familiarity implementing security controls to comply with HIPAA, SOC2, and SOX assessments/audits.
• SIEM: Experience configuring, optimizing, and analyzing logs using Splunk and Azure Sentinel.

Preferred Certifications:

• CCSP (Certified Cloud Security Professional)
• AWS Certified Security – Specialty
• Microsoft Certified: Azure Security Engineer Associate
• GIAC Cloud Security Essentials (GCLD)