Cloud Security Engineer

About The Position

Requirements

• 7-10 years of progressive experience in cloud security engineering.
• Strong organizational, administrative, project management and communication skills will be required to manage the overall security program.
• Deep hands-on experience with Azure or Google Cloud Platform (GCP) security services and best practices is essential and managing cloud security alerts in our SIEM.
• Demonstrable experience configuring Entra ID and Azure Cloud features.
• Proven expertise in securing SaaS applications and understanding of common SaaS security challenges.
• Extensive experience with scripting skills, network security principles and implementation in cloud environments.
• Strong understanding of cloud identity and access management (IAM) principles and best practices across multi-cloud.
• Solid knowledge of compliance frameworks and regulations (e.g., GDPR, SOC 2, ISO 27001, CMMC).
• Excellent communication, presentation, and interpersonal skills, with the ability to articulate complex security concepts clearly and concisely to diverse audiences.
• Ability to work independently, multitask and work in a fast-paced, client-facing environment.
• Problem-solving mindset with a strong attention to detail.
• Bachelor's Degree in Computer Science, Risk Management, Cyber Security, or related field
• 7-10 years progressive cloud security experience.
• 4+ years of experience securing, configuring and supporting cloud environments (Azure and GCP)
• 4+ years of experience supporting a security operations center, managing security alerts, configuring SIEMs and, creating custom alerts using PowerShell, Python or Bash scripts
• CISSP is required

Nice To Haves

• Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation, ARM templates) for security automation.
• Scripting skills (e.g., Python, PowerShell, Bash).
• Experience with container security (Docker, Kubernetes).
• Knowledge of DevSecOps principles and practices.

Responsibilities

• Design, implement, and optimize robust cloud security architectures to enhance, build, monitor and address all security alerts from our SIEM and other security systems.
• Respond to customer questionnaires, customer calls and create artifacts including network diagrams, architecture diagram, data flow diagrams and other artifacts to support customer requests.
• Review all security alerts and resolve these alerts in a timely manner.
• Work with our current Security Operations team to expand on our current alerting and reporting capabilities to enhance visibility across our attack surface.
• Provide expert guidance on securing SaaS applications, including identity and access management (IAM), data encryption, API security, and secure configuration baselines.
• Lead and manage all firewall reviews, access reviews, system reviews and risk assessments.
• Lead and contribute to compliance initiatives, ensuring cloud environments adhere to industry regulations and frameworks such as GDPR, SOC 2, ISO 27001, CMMC and CSA STAR.
• Conduct security assessments and gap analyses.
• Act as a trusted advisor to clients, effectively communicating complex technical security concepts to both technical and non-technical stakeholders.
• Deliver engaging presentations, attend client workshops, and build strong client relationships.
• Support incident response activities by providing expert analysis and remediation strategies for cloud security incidents.
• Lead Incident Response Plan initiatives and creating documentation for all parties to follow specific plans.
• Continuously research and evaluate emerging cloud security threats, technologies, and best practices.

Benefits

• competitive salaries
• medical, dental and vision coverage
• disability coverage
• employer paid life insurance
• mental health resources
• 401(k) plan
• fully paid parental leave program
• Generous PTO
• Flexible work schedules
• Remote work opportunities
• Paid company holidays
• Appspace Quiet Fridays (No non-essential internal meetings scheduled)
• A casual dress work environment