Cloud Security Engineer

The Cloud Security Engineer will serve as a Security Operations Support Specialist within the ATOC organization, focusing on two critical areas: Vulnerability Management and Identity & Access Management (IAM). This role helps maintain and improve the security posture of AWS-hosted infrastructure and services by tracking remediation progress, enforcing response timelines, monitoring vulnerabilities, and ensuring IAM requests are triaged and resolved efficiently. The position involves close collaboration with security program leads and engineering teams to assess risk, coordinate remediation, and continuously enhance security operations processes.

Responsibilities

• Protect the security of AWS infrastructure and services hosted in AWS.
• Support and enhance the Vulnerability Management and Identity & Access Management (IAM) pillars within Security Operations.
• Support the discovery, evaluation, and remediation of security vulnerabilities across cloud and containerized environments.
• Monitor and manage existing vulnerability scanners such as Anchore, Wiz, and Trivy, as well as related dashboards and tools including Grafana and Jira.
• Review Common Vulnerabilities and Exposures (CVEs), assess their severity using CVSS, and determine their impact in the context of the environment.
• Work jointly with Vulnerability Management program leads to communicate vulnerabilities to engineering teams and determine appropriate remediation timelines.
• Monitor the dedicated IAM support channel, ensuring every request is promptly acknowledged, triaged, and routed appropriately.
• Directly handle standard or simple IAM requests, such as password resets, basic permission adjustments, and group membership changes, by following established documentation and runbooks.
• Triages and investigate cybersecurity alerts using SIEM, EDR, and log analysis tools to support incident response and ongoing monitoring.
• Manage a queue of security-related tasks and tickets, driving them to completion and maintaining clear status updates.
• Help maintain and update IAM and Vulnerability Management documentation to ensure runbooks and procedures remain current and accurate.
• Assist in developing and refining metrics and dashboards to track the effectiveness of Vulnerability Management and IAM programs.
• Work closely with program leads to clearly communicate security risks and remediation priorities across engineering teams.
• Demonstrate a willingness to learn and adopt new Security Operations technologies, tools, and skills as the environment evolves.

• Proven experience working in a Security Operations program or similar security-focused role.
• Hands-on experience triaging and investigating cybersecurity alerts.
• Experience with SIEM, EDR, and log analysis tools to support security monitoring and incident response.
• Python coding experience for automation, scripting, or integration tasks.
• Strong understanding of the CVSS system and general cybersecurity principles.
• Experience triaging cybersecurity vulnerabilities and assessing their severity and impact.
• Familiarity with AWS and cloud security concepts, particularly in the context of securing AWS infrastructure and services.
• Solid understanding of container technologies and image architecture, including Docker and Kubernetes.
• Understanding of Identity & Access Management principles and their application in cloud environments.
• Proven ability to manage a queue of tasks or tickets and drive them to completion, with Jira experience as a major advantage.
• Familiarity with security scanners, Software Composition or Decomposition Analysis (SCA), and Software Bills of Material (SBOM).
• Knowledge of vulnerability remediation techniques and best practices.
• Exceptional communication and stakeholder management skills, with the ability to communicate clearly and effectively with technical and non-technical audiences., * Experience working with AWS, Linux, and Kubernetes in a production or security-focused environment.
• Practical experience with vulnerability scanning tools such as Anchore, Wiz, and Trivy.
• Experience using dashboards and collaboration tools such as Grafana and Jira to track vulnerabilities, tickets, and metrics.
• Demonstrated willingness and ability to learn new Security Operations technologies and skills.
• Experience contributing to and maintaining security runbooks, documentation, and process improvements.
• Ability to collaborate effectively with distributed engineering and security teams.
• Strong analytical and problem-solving skills applied to complex security and access management issues.

Work Environment

This role operates within a cloud-centric security environment focused on securing AWS infrastructure and services, as well as containerized workloads running on technologies such as Docker and Kubernetes. The position is embedded in an active Security Operations setting that leverages tools including SIEM, EDR, vulnerability scanners (Anchore, Wiz, Trivy), and observability platforms like Grafana, alongside ticketing systems such as Jira. The environment emphasizes clear communication, close collaboration with engineering teams, and continuous improvement of security processes, documentation, and metrics. Job Type & Location

This is a Contract to Hire position based out of Pittsburgh, PA. Pay and Benefits

The pay range for this position is $40.00 - $45.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave) Workplace Type

At Actalent, diversity and inclusion are a bridge towards the equity and success of our people. DE&I is embedded into our culture through: * Hiring diverse talent * Maintaining an inclusive environment through persistent self-reflection * Building a culture of care, engagement, and recognition with clear outcomes * Ensuring growth opportunities for our people Actalent is an equal opportunity employer. About Actalent Actalent is a global leader in engineering and sciences services. For more than 40 years, we've helped visionary companies advance their goals. Headquartered in the United States, our teams span 150 offices across North America, EMEA, and APAC-with four delivery centers in India led by 1,000+ extraordinary employees who connect their passion with purpose every day. Our Bangalore, Hyderabad, Pune, and Chennai delivery centers are hubs of engineering expertise, with core capabilities in mechanical and electrical engineering, systems and software, and manufacturing engineering. Our teams deliver work across multiple industries including transportation, consumer and industrial products, and life sciences. We serve more than 4,500 clients, including many Fortune 500 brands. Learn more about how we can work together at actalentservices.com. Compensation:$83,200 - $93,600 / yr