Senior Cloud Security Engineer

About The Position

Requirements

• Advanced university degree in information security, computer science, engineering, mathematics, business, or related discipline. A first-level university degree in a relevant discipline plus two years of relevant experience in addition to the experience requested below may be accepted in lieu of an advanced degree. CISSP and AWS Certified Solution Architect Associate certifications.
• A minimum of seven years working in the field of information security in an engineering or analysis capacity.
• At least three years of hands-on experience in cloud security and engineering, with specific expertise in AWS and at least one other major public cloud platform (Azure or GCP).
• Proven track record in designing, deploying, and operating secure cloud workloads in production environments.
• Excellent written and spoken knowledge of English.
• Deep knowledge of AWS, Azure, or GCP security services and configurations.
• Proficiency in scripting (Python, PowerShell or Bash) and IaC frameworks (Terraform or CloudFormation).
• Hands on knowledge of container security (Docker, Kubernetes) and endpoint/workload protection tools (CrowdStrike).
• Familiarity with DevSecOps principles, CI/CD pipelines, and security automation.
• Strong analytical, conceptual and problem-solving skills with the ability to address complex technical and security challenges.
• Effective communication skills, including the ability to explain complex technical issues to non-technical stakeholders and to produce clear technical documentation.
• Demonstrated ability to work collaboratively in multicultural and cross-functional teams, building constructive relationships with stakeholders.
• Strong sense of initiative, ownership and accountability, with a focus on service quality and continuous improvement.
• High level of integrity, professionalism and discretion in handling sensitive information and systems.
• Ability to provide technical guidance and mentoring to colleagues and project teams, contributing to the development of organizational capabilities in secure cloud engineering.

Nice To Haves

• Additional certifications such as, Microsoft Azure Solution Architect Associate.
• SANS SEC588 Cloud Penetration testing (or equivalent).
• SANS SEC540 Cloud Native Security and DevSecOps Automation. (or equivalent).
• OSWA Offsec Web Assessor or OSWE Offisec Web Expert.
• Demonstrated experience in Infrastructure as Code (IaC) and automation, specifically using Terraform or CloudFormation to deploy secure cloud resources.
• Practical experience in securing container orchestration platforms (e.g., Kubernetes, EKS, AKS, GKE) and integrating security controls into CI/CD pipelines.
• Proven track record of designing and operating security controls in production environments, including identity management (IAM), network security, and encryption.
• Experience working in large, complex, or regulated environments (such as international organizations, the public sector, or the financial industry).
• Knowledge of other UN official languages, particularly French.
• Hands on knowledge of application security (AppSec), secure software development lifecycles (SSDLC), or DevSecOps practices.
• Hands on knowledge of advanced threat protection tools (e.g., CrowdStrike) and their integration into cloud workloads.

Responsibilities

• Secure Cloud Architecture and Design
• Infrastructure as Code (IaC) and Automation
• Cloud Security Controls and Tooling Integration
• Operations, Reliability, and Incident Response
• Governance, Compliance, and Knowledge Management
• Other Duties