UL SolutionsRemote
Cloud Security Engineer
United States of America
Full Time
1 week ago
$95,000 - $120,000 USD
Visa Sponsor
Key skills
SnowflakeAWSAzureGCPTerraformIAMAzure ADCI/CDSnykCheckmarxOWASPCloud SecurityZero Trust
About this role
UL Solutions is a company dedicated to safety science, and they are seeking a highly skilled Cloud Security Engineer to join their security architecture team. This role will be responsible for designing, implementing, and maintaining secure cloud environments and applications across multi-cloud platforms, with a focus on Azure.
Responsibilities:
- Design and implement security controls for cloud infrastructure (Azure, AWS, GCP)
- Develop and maintain security architecture patterns (e.g., hub-and-spoke, Zero Trust)
- Integrate security tools such as Wiz, Microsoft Defender for Cloud, Silverfort, and Terraform
- Conduct threat modeling and risk assessments for cloud-native services
- Collaborate with IAM, SOC, and GRC teams to align cloud security with enterprise policies
- Perform secure code reviews, static/dynamic analysis, and vulnerability assessments
- Integrate security into CI/CD pipelines using tools like Snyk, Checkmarx, or Veracode
- Guide development teams on secure coding practices and OWASP Top 10
- Design and implement API security strategies including OAuth2, OpenID Connect, and mTLS
- Support remediation of application vulnerabilities and provide technical guidance
- Map cloud and application security controls to compliance frameworks (NIST 800-53, SOC 2, CIS)
- Assist in audits and evidence collection for regulatory compliance
- Maintain documentation of security architecture, policies, and procedures
Requirements:
- Bachelor's degree in Computer Science, Cybersecurity, or related field
- 3-4 years of experience in cloud security engineering and application security
- Strong understanding of Azure security services and architecture
- Experience with infrastructure-as-code (Terraform, Bicep)
- Familiarity with Snowflake security features and data protection strategies
- Knowledge of identity and access management (Azure AD, Conditional Access, MFA)
- Hands-on experience with DevSecOps tools and practices
- Certifications: Azure Security Engineer Associate, CISSP, CCSP, OSCP, or GIAC
- Experience with multi-subscription Azure environments
- Familiarity with Zero Trust architecture and implementation
- Experience with security automation and orchestration