Cloud Security Engineer

Job Description

Job Description

Apply now: Cloud Security Engineer, location is Hybrid. The start date is ASAP for this 6-month contract-to-hire position.

Job Title: Cloud Security Engineer
Location-Type: Hybrid (3 Days A Week On-Site - Sterling, VA 20166)
Start Date Is: ASAP
Duration: Contract to Hire (6 Months)
W2 Pay Rate Range: $76/hr – $86/hr
Benefits: Eligible for Health, Dental, Vision, 401K
Not eligible for visa sponsorship

Job Description:
The Cloud Security Engineer is responsible for strengthening cloud security posture through vulnerability management, security tooling, and cross-functional engineering collaboration, with a primary focus on Google Cloud Platform environments.

Day-to-Day Responsibilities:

• Manage and prioritize cloud vulnerabilities across GCP environments using CSPM/CNAPP tools

• Analyze security findings and clearly articulate business risk and remediation priorities

• Partner with engineering and application teams to guide remediation strategies

• Utilize CSPM tools (ex: Wiz, Prisma Cloud, Orca, Lacework, or similar) to identify misconfigurations and risks

• Assist with development of automation scripts (primarily Python) to improve security workflows and reporting

• Support cloud security hardening efforts across IAM, networking, storage, and compute services

• Collaborate with DevOps teams to integrate security into CI/CD pipelines

• Review container and Kubernetes security configurations

• Contribute to documentation, standards, and security best practices

• Support multi-cloud security initiatives where applicable (AWS/Azure)

• Research emerging cloud threats and security trends

• Assist with security reviews of AI/ML platforms and emerging technologies

Requirements:

Must-Have Skills/Experiences:

• 7 years of experience in cloud security, cloud engineering, or related field

• Hands-on experience securing Google Cloud Platform (GCP) environments

• Strong experience with cloud vulnerability management processes

• Experience identifying, prioritizing, and coordinating remediation of cloud risks

• Experience with CSPM/CNAPP platforms (Wiz, Prisma Cloud, Orca, Lacework, or similar)

• Working knowledge of Python or similar scripting languages for automation (not heavy development)

• Understanding of cloud IAM and least-privilege access principles

• Knowledge of cloud networking fundamentals (VPCs, segmentation, routing)

• Experience with container security and Kubernetes environments

• Understanding of Infrastructure-as-Code concepts (Terraform preferred)

• Strong understanding of cloud security architecture and security controls

• Ability to communicate risk clearly to technical and non-technical stakeholders

• Strong collaboration skills working with engineering and security teams

• Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience)

Nice-to-Have Skills/Experiences (NOT required, but a plus!):

• Experience with AWS or Azure cloud security

• Cloud security certifications (GCP, AWS, or Azure)

• Experience with DevSecOps practices and CI/CD security integration

• Experience with AI/ML platform security

• Experience with observability or SIEM tools (ex: Splunk)

• Experience integrating security tools with Jira or Slack

• Familiarity with Oracle Cloud Infrastructure (OCI)

• Experience with Terraform or similar IaC tools