Cloud Infrastructure / Cloud Security Engineering Lead

The Cloud Infrastructure / Cloud Security Engineering Lead is responsible for identifying, investigating, and remediating vulnerabilities and cloud misconfigurations across enterprise cloud environments. The role focuses on reducing systemic risk by partnering closely with infrastructure automation, production services, and cloud engineering teams to implement scalable, long-term remediation strategies rather than temporary fixes.

This position sits at the intersection of cloud engineering, infrastructure operations, and cloud security, supporting highly regulated enterprise environments where operational stability, security posture, and cloud governance are critical.

Cloud Environment & Platforms

Enterprise hybrid and public cloud environments including:

• Google Cloud Platform (Google Cloud Platform) (primary platform)
• Multi-region cloud architectures supporting global business units
• Enterprise production, pre-production, and development cloud environments
• Secure and regulated cloud infrastructure supporting financial services operations

Cloud Engineering & Vulnerability Remediation

• Investigation and remediation of cloud vulnerabilities, exposure risks, and insecure configurations
• Root-cause analysis of recurring infrastructure and security issues
• Implementation of preventive remediation strategies to reduce repeated vulnerabilities
• Collaboration with Infrastructure as Code (IaC) and production support teams to deploy lasting fixes
• Management of cloud security posture across infrastructure, networking, storage, and compute layers, * Secure infrastructure provisioning and remediation through Terraform and cloud-native tooling
• Integration of security and compliance controls into infrastructure automation workflows
• Collaboration with infrastructure automation teams to standardize secure-by-default cloud patterns
• Support of scalable remediation and configuration management processes across environments

Security Operations & Exposure Management

• Support vulnerability management and exposure reduction initiatives across Google Cloud Platform
• Work with cloud security and compliance tooling including vulnerability scanning platforms
• Investigate findings from tools such as Qualys and compliance monitoring platforms
• Remediate:

• VM vulnerabilities
• Public access misconfigurations
• Storage and account security gaps
• Cloud infrastructure control weaknesses

• Support operational cloud security initiatives in regulated enterprise environments, * Lead remediation efforts for cloud vulnerabilities and infrastructure security issues
• Diagnose root-cause failures and implement long-term corrective actions
• Partner with production services, cloud engineering, and IaC teams to reduce recurring operational risk
• Support secure cloud operations across Google Cloud Platform environments
• Improve cloud security posture through automation, standardization, and operational excellence
• Support enterprise cloud engineering initiatives within highly regulated environments
• Participate in operational support activities requiring overlap with US-based teams
• Mentor cloud engineers and promote strong engineering and remediation practices

• 8+ years of experience supporting enterprise cloud infrastructure environments
• Strong hands-on experience with Microsoft Google Cloud Platform (Google Cloud Platform)
• Proven experience diagnosing and remediating cloud vulnerabilities and misconfigurations
• Strong understanding of enterprise cloud infrastructure and cloud security principles
• Hands-on experience with Terraform and Infrastructure as Code (IaC)
• Experience collaborating with production services and infrastructure automation teams
• Experience working within regulated or financial services environments
• Ability to work independently in operationally demanding enterprise environments
• Strong troubleshooting and root-cause analysis skills

Preferred Qualifications

• Financial services industry experience
• Experience supporting enterprise vulnerability remediation programs
• Familiarity with Qualys or similar vulnerability management platforms
• Exposure to cloud compliance frameworks and posture management tooling
• Experience supporting production cloud operations with US timezone overlap
• Experience with cloud infrastructure security and operational governance