Cloud Security and Vulnerability Management Consultant

About The Position

Requirements

• Hands-on experience with at least one major cloud platform (AWS preferred; Azure, M365 also valued).
• Understanding of cloud security posture management (CSPM) concepts and the differences between platform-level tools (e.g., Wiz) and assessment-focused tooling.
• Familiarity with compliance frameworks such as CIS Benchmarks, SOC2, PCI-DSS, or NIST.
• Understanding of vulnerability management concepts: vulnerability types, severity scoring, remediation prioritization.
• Strong communicator able to explain technical findings to both engineers and executives.
• Comfortable writing Python and working in Git.
• Experience with AI-assisted development and automation tools such as GitHub Copilot, Microsoft Copilot Studio and agent building, Power Automate, and Claude.
• Willingness to learn new tools and platforms quickly.
• 3–5 years’ experience in cloud security, vulnerability management, security consulting, or a related technical security role.
• Relevant certifications (AWS, Azure, CISSP, or similar), however, demonstrated experience matters more.

Nice To Haves

• Microsoft 365 security experience (Entra ID, Defender, Exchange, Teams, SharePoint, Intune).
• Experience with cloud security scanning tools or CSPM platforms.
• Experience with vulnerability management platforms, particularly Qualys (preferred) or Tenable.

Responsibilities

• Deliver cloud security posture assessments across AWS, Azure, and Microsoft 365 environments.
• Evaluate customer environments against CIS Benchmarks, cloud provider security frameworks and best practices, and customer-specific compliance standards.
• Use custom-developed assessment frameworks and cloud-native security tooling to identify misconfigurations and security gaps.
• Perform cloud resource inventory and exposure analysis.
• Prioritize findings by risk and develop clear remediation guidance.
• Deploy and manage vulnerability scanning platforms in customer environments.
• Configure and tune scanning platforms alongside customers, including patching strategy development.
• Analyze scan results, prioritize findings by severity and business impact, and guide remediation planning.
• Understand vulnerability types, severity frameworks (e.g., CVSS, vendor-specific), and how to communicate risk to customers.
• Participate in customer-facing activities: kickoff calls, technical interviews, working sessions, and findings presentations.
• Contribute to assessment reports and remediation roadmaps for technical and executive audiences.
• Communicate technical risk clearly to non-technical stakeholders.
• Contribute to a custom-built cloud security assessment platform (AWS native services).
• Develop and maintain custom security checks and automated compliance scanning tools.
• Work with AWS and Azure cloud infrastructure components.
• Write and maintain scripts for assessment automation and reporting.

Benefits

• Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing.
• Bonus structure (short-term incentives, long-term incentives and/or sales compensation).