Cloud Security Engineer
Role details
Job location
Tech stack
Job description
The Cloud Security Engineer is responsible for deploying, managing, and securing cloud solutions across AWS, Azure, and Google Cloud platforms. This role involves close collaboration with IT, Cloud Engineering & Operations, Network Operations and Data Science Center teams, acting as a technical lead and primary contact for cloud security projects, migrations, and integrations. The Cloud Security Engineer is expected to have hands-on experience managing cloud services in a hybrid environment, with a strong focus on implementing and maintaining robust security controls.
In addition to technical responsibilities, the Cloud Security Engineer will engage with both internal colleagues at all levels within the firm and external stakeholders, ensuring seamless communication and coordination on cloud security matters. The Cloud Security Engineer will stay informed on emerging cloud security technologies and will translate information security policies into operational processes, continuously enhancing the security posture of the organization.
How You'll Help Our Team Succeed:
- Designs and engineers secure cloud solutions leveraging Google Cloud, AWS and Azure IaaS, PaaS, and SaaS, with a focus on security best practices.
- Researches, designs, and implements new cloud security technologies to enhance the cloud security posture.
- Supports applications hosted in cloud environments, ensuring they meet stringent security standards.
- Deploys and develops cloud cost management, budgeting, and expensing capabilities, with an emphasis on security aspects to control unauthorized access and expenditures.
- Manages and reports on cloud costs, identifying and reporting unusual expenditures with a focus on security implications.
- Conducts periodic audits of accounts, permissions, and access rights for cloud services in compliance with security policies.
- Builds and maintains strong relationships across IT teams, fostering collaboration on cloud security issues.
- Performs periodic gap analyses against current and future security requirements to improve cloud security measures; recommends relevant improvements.
- Administers and supports secure connectivity to cloud services, ensuring encrypted and protected data transfers, using AWS Direct Connect and Azure Express Route.
- Monitors daily maintenance event logs for cloud-based environments and addresses any noted issues.
- Maintains security patches in alignment with industry best practices.
- Creates and maintains cloud-related security policies and procedures in partnership with the Director, Information Security.
- Creates and maintains cloud security operational documentation and training materials for use by IT staff.
Requirements
- 8+ years of experience in cyber security roles required, with professional services experience preferred.
- Extensive experience supporting and administering AWS, Azure, Google Cloud and O365 cloud environments.
- Experience with cloud security implementations, migrations, and integrations within secure frameworks.
- Familiarity with programmatic means of cloud security administration, such as cloud APIs and CloudFormation Templates on AWS, with a focus on secure configuration.
- UNIX/Linux experience with a strong exposure to server administration.
- Bachelor's degree in a relevant field or equivalent combination of education, skills and experience.
- Cloud Professional Certification required (e.g., AWS Certified Security - Specialty and/or Microsoft Certified: Azure Security Engineer Associate or similar).
- Additional security related IT certifications (e.g., CISSP, CISM, CompTIA Security+) are a plus.
