Senior Cloud Security Engineer

Role Overview

• Identify threats, and design and develop appropriate defense measures
• Evaluate public cloud platform's, native cloud services', public cloud workloads' changes for security implications
• Ensure public cloud platform, services, and workloads are secure by design, which includes identifying, presenting opportunities of improvement on enhance the security posture of the public cloud environments
• Configure continuous compliance validation to ensure ongoing adherence to security policies and regulations
• Support the monitoring of cloud environments for security incidents and for rapid response through automated mechanisms
• Collaborate with cross-functional teams, including developers, cloud engineers, architects, and operations, to (1) embed security-as-code practices into the DevOps pipeline, and (2) implement technical enhancements to the security design/posture of the public cloud environments
• Serve as a subject matter expert on public cloud technologies and security solutions
• Provide guidance and mentorship to team members
• Foster a culture of continuous improvement, innovation, and knowledge sharing across the organization
• Stay updated on the latest cloud security threats and advancements

Requirements

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field, or relevant industry certifications
• At least 3 years of experience in designing, implementing, and securing public cloud platforms and services, preferably in AWS and Azure; OCI is a plus
• Professional experience in highly regulated industries, preferably in financial industry is major plus
• Required certifications
• at least one of the following: AWS Certified Solutions Architect (Associate and/or Professional), AWS Certified Security
• Specialty, Microsoft Certified: Azure Security Engineer Associate
• The following certifications are a plus: ISC2 Certified Cloud Security Professional (CCSP), ISC2 Certified Information Systems Security Professional (CISSP), ISACA Certified Information Systems Manager (CISM), EC-Council Certified Ethical Hacker (CEH)
• Expertise in public cloud service providers, especially in Amazon Web Services (AWS) and Microsoft Azure; Oracle Cloud Infrastructure (OCI) is a plus
• Hands on experience with public cloud-native platforms and services
• such as Compute, Network, Storage, and ideally Generative AI/Agentic AI public cloud services
• with understanding of security control requirements to securely implement for usage of services
• Hands on experience with public cloud-native security services specialized in Threat Detection, Encryption, Data Protection, Compliance, Identity and Access Management / Permission guardrails, etc
• Preferably, hands on experience with solutioning and configuring automated security policies in Cloud Native Application Protection (CNAPP) inclusive of capabilities such as Cloud Security Posture Management (CSPM), Infrastructure-as-code (IaC) Scanning, etc
• Deep understanding of cloud security frameworks (e.g., AWS Well-Architected Framework, Azure Well-Architected Framework), industry compliance requirements, and best practices
• Familiar with Infrastructure as code, preferably Hashicorp Terraform; AWS CloudFormation, and Azure Resource Manager (ARM) templates
• Strong analytical skills to identify potential security risks and automate security compliance checks
• Excellent problem-solving abilities and the capacity to work effectively under pressure
• Be proactive, with a strategic approach to security management, ensuring that the public cloud platform and solutions are not only secure but also compliant at all times through automated policies and validation

Tech Stack

• AWS
• Azure
• Cloud
• Cyber Security
• Oracle
• Terraform

Benefits

• comprehensive health and wellness benefits
• retirement plans
• educational assistance and training programs
• income replacement for qualified employees with disabilities
• paid maternity and parental bonding leave
• paid vacation
• sick days
• holidays