Cloud Security Engineer

Job Description

This opportunity is for a skilled and proactive Cloud Security Engineer to safeguard enterprise cloud environments. The role involves designing, implementing, and managing security controls across multi-cloud platforms (AWS, Azure, and GCP) to ensure continuous compliance, robust threat detection, and secure architecture for IaaS, PaaS, and SaaS services.

Key Responsibilities

• Design and implement secure cloud architectures, including the application of Zero Trust principles, network segmentation, and secure landing zones across AWS, Azure, and GCP.
• Manage and operate cloud-native security tools such as AWS Security Hub, Azure Defender, and GCP Security Command Center, utilizing CSPM and CIEM solutions to proactively remediate misconfigurations.
• Develop and enforce robust Identity and Access Management (IAM) controls, including Role-Based Access Control (RBAC) and Multi-Factor Authentication (MFA), while enforcing the principle of least privilege.
• Lead the investigation and response to cloud-specific security alerts and incidents, supporting threat hunting and logging activities using SIEM/SOAR platforms.

Essential Requirements

• A minimum of 5 years of hands-on professional experience in a cloud engineering or dedicated cloud security role.
• Demonstrable expertise with security tools covering CSPM, Web Application Firewalls (WAF), API Gateway security, and vulnerability scanning.
• Strong foundational understanding of networking concepts, including Virtual Private Clouds (VPC), subnets, routing, DNS, and load balancing.
• In-depth familiarity with major security and regulatory frameworks such as ISO 27001, NIST CSF, CIS Benchmarks, and PCI DSS.