Cloud Security Engineer

About The Position

Requirements

• Minimum of five (5) years of experience in information security.
• Experience in design and implementation of security tools, processes, and procedures.
• Demonstrated experience in deploying and administering security controls within cloud and infrastructure environments.
• Demonstrated experience in cloud security principles and best practices for platforms such as Microsoft Azure, Amazon Web Services or Google Cloud Platform.
• Proficient in network security principles, firewalls, routers, switches, server administration and configuration baselines.
• Experience with vulnerability management tools, such as Nessus, PrismaCloud.
• Demonstrated knowledge of secure SDLC, secure architecture design and security operations.
• Demonstrated experience in information security, data security, privacy, and or data management.
• Experience defining secure architectural requirements, security controls, and configuration standards in compliance with regulatory requirements.
• Experience with container security and securing container orchestration platforms.
• Experience with tools like Terraform and Ansible and familiarity with CI/CD pipelines for automated security testing and deployment.
• Demonstrated knowledge of common vulnerability assessment methodologies and techniques (e.g., CVSS scoring, threat modeling).
• Proven ability to prioritize identified vulnerabilities and work collaboratively with cross-functional teams to ensure timely remediation and risk mitigation.
• Demonstrates an understanding of the functions and operations of Security Information and Event Management (SIEM) systems, Endpoint Detection & Response.
• Expertise in threat detection, Incident Handling, and operational security.
• Demonstrates understanding of emerging cybersecurity threats.

Nice To Haves

• Bachelor’s degree in Engineering, Security or Technology related major, or closely allied field AND three to four years of related experience.
• Experienced in creating comprehensive reports and dashboards to communicate findings, track remediation progress, and provide visibility to management and relevant teams.
• Motivated self-starter with initiative to take independent action and accept responsibility for your actions.
• Demonstrated experience in supporting IRS/CMS or relevant audits.
• Demonstrates a proactive approach by consistently identifying potential blockers and communicating them early, while maintaining a solution-focused mindset to facilitate continued progress.
• Creative and proactive problem solver; must possess the ability to make independent decisions, set work priorities, and address issues promptly.
• Experience in developing, reviewing, and updating security standards, procedures, awareness and training.
• Demonstrates interpersonal and collaboration skills, effectively partnering with internal management, staff, and cross-functional teams as well as external partners and vendors.

Responsibilities

• Serve as a subject matter expert in cloud and infrastructure security, providing guidance on Microsoft Azure and cloud-native architectures.
• Enforce secure architectural requirements, security controls, and configuration standards for current and new cloud and on-premise infrastructure in accordance with WAHBE security policies and regulatory requirements (e.g., CMS, IRS).
• Perform cross-functional Cloud & Infrastructure security design reviews to ensure solutions align with established security policies.
• Collaborate with Infrastructure and DevOps teams to embed security best practices throughout infrastructure-as-code, CI/CD pipelines, and the software development lifecycle, implementing automated controls, threat modeling, and monitoring.
• Evaluate and recommend new and emerging security products and technologies.
• Create and maintain security architecture documentation, including models, baselines, templates, and diagrams.
• Assess the effectiveness of implemented security controls, identify any gaps, and provide progress updates.
• Configure, schedule, and conduct vulnerability scans using enterprise tools to identify potential security weaknesses.
• Analyze and prioritize vulnerabilities based on risk and potential impact to WAHBE.
• Assess identified findings from scan reports and develop actionable recommendations and compensating controls to address and mitigate associated risks.
• Collaborate with Infrastructure and Operations teams to develop and implement remediation plans.
• Ensure robust and measurable Vulnerability Management practices within both cloud and on-premise environments.
• Report on vulnerability trends and key areas for improvement.
• Maintain and optimize security tools and technologies including but not limited to firewalls, endpoint protection, and SIEM.
• Continuously monitor the cloud and on-premise environment for security events, anomalies, and potential threats, and conduct thorough investigations to identify root causes and impacts.
• Perform technical incident response efforts, including investigation, containment, and recovery from security breaches, and preparation of incident reports.
• Collaborate with internal stakeholders, vendors, and external partners to ensure secure integration and ongoing compliance, maintaining synchronization with the Security objectives.
• Support Cloud and Infrastructure Security Lead to support audit activities by providing technical guidance and documentation, and act as a liaison for internal and external audit reviews as needed.
• Assist Cloud & Infrastructure Security Lead in reviewing existing security capabilities and assist in defining roadmap for cloud and infrastructure security enhancements.
• Support the development and implementation of information security awareness and training initiatives.
• Stay current on industry trends, emerging threats, and relevant technologies, and communicate key insights to the Cloud & Infrastructure Security Lead.
• Provide regular briefings to the Cloud and Infrastructure Security Lead and Information Security Manager (ISM), escalating issues and blockers as necessary.
• Perform other duties as assigned within the scope of cloud and infrastructure security.

Benefits

• Take a peek at our benefits package [https://www.wahbexchange.org/content/dam/wahbe-assets/careers/WAHBE%20Benefits%20Package1.pdf].