Cloud Security Engineer

Job DescriptionJob DescriptionPosition Title:Cloud Security EngineerRemote/Onsite :100% Remote

Required Tech/Experience (Manager won’t consider candidates without the following):Hands-on experience with AWS security tools (GuardDuty, CloudTrail, SecurityHub, etc.)Strong experience leveraging Terraform for infrastructure and security controlsExperience with Wiz (Wiz.io)

Preferred Tech/Experience (Not required, but moves the candidate to the top of the list):Multi-cloud experience (AWS, Azure, GCP)Strong background in IAM, networking, and cloud security architecture

Typical Day to Day (Tasks & Responsibilities):Get into the weeds of cloud security engineering across AWS (and potentially Azure/GCP)Establish and enforce security baselines during infrastructure deploymentImplement alerts, monitoring, and protections across cloud environmentsPartner with DevOps and Platform teams to embed security into infrastructure and CI/CD pipelinesIdentify vulnerabilities and drive remediation effortsEnhance cloud security posture through automation and infrastructure as code (Terraform)Contribute to overall cloud security architecture and best practices

Years’ Experience/Degree Requirements/Certification:5+ years of experience in cloud security engineeringStrong technical background (this is not a GRC-focused role)Experience across AWS required; Azure/GCP exposure is a plus

Job Description:● Implement and optimize security controls for AWS cloud infrastructure through code.● Monitor and review application and infrastructure security posture, initiating remediationefforts with relevant teams.● Recommend new or revised security measures and countermeasures for currentsecurity challenges.● Collaborate with DevOps and Platform teams to ensure security considerations areembedded from the outset.● Identify, create, and implement security standards for CI/CD pipelines and infrastructuredeployment automations.● Oversee the implementation and administration of logging and monitoring services tosafeguard the security and integrity of applications.● Create and maintain system documentation, architecture diagrams, and onlinecollaborative documentation (e.g., Wiki) with high quality.● Work on other security engineering initiatives such as streamlining vulnerabilitymanagement and network architecture.What you will bring to the team:● 5+ years of demonstrable experience with AWS cloud security infrastructure and tools.● Experience with three or more of the following AWS services: GuardDuty, CloudTrail,CloudWatch, Inspector, SecurityHub, TrustedAdvisor, Config, ControlTower / GuardRails.● Experience using organizational cloud governance constructs (e.g., AWS Organizationsincluding OUs and SCPs).● Strong understanding and experience with IAM, including roles and policies.● Strong understanding and experience with cloud access control & security mechanisms(e.g., ACL, Security Groups, VPCs).● Strong knowledge of application development, cloud networking concepts, systemsengineering, and network engineering to develop security requirements and bestpractices, enterprise risk assessment methodologies● Strong experience with Terraform.● Strong experience with Wiz.● Experience with CI/CD pipeline tooling (Artifactory/ECR, Github Actions)● Able to show initiative and translate business requirements and needs into technical,secure solutions.● Excellent communication skills with the ability to communicate complex securityconcepts clearly and concisely● Experience with other cloud providers such as GCP, Azure, OC