This is a remote position.
Job Description: Cloud Security Engineer – 5+yrs
Summary
We are looking for an experienced
Cloud Security Engineer
to support and enhance the security posture of multi-cloud environments. This role focuses on cloud security operations, monitoring, incident response, and implementation of best practices across cloud, endpoint, and email security domains.
Key Responsibilities
Security Findings & Remediation Documentation
● Analyze and document cloud, email, endpoint, and security monitoring findings.
● Produce clear and actionable documentation covering:
o Risk assessment and severity classification
o Impact analysis
o Recommended remediation actions
● Maintain findings documentation within ticketing systems, reports, or other designated
platforms.
Alert Triage & Investigation
● Triage, investigate, and classify security alerts across cloud and security platforms.
● Maintain complete and accurate investigation records, including:
o Analysis performed
o Containment or mitigation actions (if applicable)
o Escalation details
o Final alert disposition
AI Security in Cloud Environments
● Secure AI/ML workloads deployed in cloud environments, including training pipelines, data
storage, and inference endpoints.
● Monitor usage of AI services (including third-party AI APIs) for anomalies, misuse, or
unauthorized access.
● Collaborate with engineering teams to ensure secure deployment of AI services following
cloud security best practices.
● Contribute to governance and policy development for responsible and secure AI usage in the cloud Configuration & Security Posture Assessment
● Conduct secure configuration reviews across cloud environments.
● Perform IAM assessments and analyze CSPM findings.
● Document posture assessment results and provide recommendations for security posture
improvements.
● Support continuous monitoring and tuning of cloud security controls.
Security Automation & Tooling
● Design, develop, and maintain security automation scripts and workflow enhancements.
● Create automation artifacts using scripting languages such as Python.
● Provide sufficient documentation and usage notes to enable ongoing operation and
maintenance by internal teams.
● Build cloud security infrastructure using infrastructure as code tools such as Terraform
Operational Metrics & Reporting
● Prepare periodic cloud security operational reports, including:
o Alert volumes and trends
o Remediation progress
o Posture improvements
o Tool tuning and optimization efforts
● Present concise status updates to stakeholders as requested.
Incident Response Support
● Support investigation and response to security incidents impacting cloud environments.
● Contribute to incident reports, investigation summaries, timelines, and technical analysis.
● Assist with root-cause analysis and corrective action recommendations.
Required
Skills & Qualifications
● Bachelor’s degree in computer science, Cybersecurity, or related field 5+years of experience in Cloud Security / Security Operations.
● Hands-on experience with AWS, Azure,GCP, or OCI security services
● Strong knowledge of IAM, network security, and cloud-native security controls.
● Experience with CSPM tools and EDR platforms like Crowdstrike
● Familiarity with SIEM tools and incident response processes.
● Hands-on experience with identity-aware access solutions such as Teleport
(or similar platforms) for secure access to infrastructure and services.
● Proficiency in scripting languages like Python.
● Foundational understanding of securing AI/ML workloads in cloud environments (e.g., model access control, API security, data protection).
Preferred
Qualifications
● Certifications such as AWS Security Specialty, Azure Security Engineer, CCSP, or CISSP
Experience with automation, SOAR platforms, or DevSecOps practices.
● Exposure to compliance frameworks (ISO 27001, SOC 2, etc.).
● Understanding of email security protocols (SPF, DKIM, DMARC).