Cloud Security Engineer

As a key member of the Global Security Architecture & Engineering team, the Cloud Security Engineer will play a vital role in securing the company's cloud environments. This position involves performing multi-cloud security reviews, risk assessments, guardrail development, policy codification, and design reviews. The ideal candidate will ensure that all cloud implementations align with the company's security, compliance, and regulatory requirements. You will drive the development and maintenance of robust, end-to-end cloud security strategies while collaborating with in-house and external teams., * Conduct and ensure comprehensive security implementation for global cloud projects across various technology areas

• Develop, codify, and engineer cloud security policies encompassing preventive, detective, reactive, and forensic controls; perform thorough testing of these policies
• Engineer cloud security solutions for containerized environments and microservices (e.g., Kubernetes, Docker)
• Build and integrate security solutions for DevSecOps pipelines and collaborate with cross-functional teams to deploy them globally
• Perform threat modeling for cloud-based workloads and develop corresponding countermeasures
• Review and assess new third-party cloud and on-premises solutions to identify potential security risks and recommend mitigations
• Design and implement security overlays across multi-cloud environments
• Partner with stakeholders to develop and enforce cloud security policies, standards, and best practices
• Monitor cloud security compliance throughout project lifecycles and ensure adherence to company standards
• Guide the development of secure architecture requirements and ensure they are met through project planning and design phases
• Maintain accurate reporting of security progress and communicate effectively with relevant stakeholders

• Bachelor's degree in computer science, Cybersecurity, or a related field. Master's degree preferred
• 8+ years of experience in information security, with a focus on Technical Cyber Security domain
• Minimum of 5 years' experience in a cloud security environment
• CISSP, CCSP, OSCP, SANS or equivalent desirable
• Certification in one or more cloud vendor offerings such as AWS, GCP, Azure, OCI

Specific Knowledge & Experience

• 3+ years of hands-on cloud security experience, ideally in roles such as cloud security engineer or solutions architect with expertise in secure cloud implementations
• Proficiency in core cloud security areas: governance, identity and access management, network and compute infrastructure security, data protection, workload security, and monitoring
• Knowledge of cloud security frameworks (e.g., AWS Well-Architected, Google Cloud Security Foundations) and architectural standards (e.g., TOGAF)
• Familiarity with AI security assurance frameworks and implementing security measures for cloud-based AI services
• Experience with security tools for container technology (e.g., Kubernetes, ECS, Docker) and cloud posture management (e.g., Prisma Cloud, Rapid7)
• Expertise in integrating security into CI/CD processes and proficiency with tools such as Git and GitHub
• Hands-on experience with Infrastructure as Code (IaC) and Policy as Code (PaC) technologies, including Terraform and CloudFormation
• Demonstrated skills in cloud threat modeling and architectural assessment using tools like IriusRisk
• Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA)
• Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS)
• Excellent documentation, presentation, and analytical skills with the ability to convey technical concepts to stakeholders