Lead Cloud Security Engineer
REQUEST TECHNOLOGY
Dallas, United States of America
17 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
SeniorJob location
Dallas, United States of America
Tech stack
Microsoft Active Directory
Amazon Web Services (AWS)
Software System Penetration Testing
Bash
Cloud Computing
Cloud Computing Security
Cloud Engineering
Continuous Integration
DevOps
Github
Groovy
Identity and Access Management
Python
Kerberos (Protocol)
OAuth
OpenID
Public Key Infrastructure
Cloud Services
Ansible
Software Engineering
Scripting (Bash/Python/Go/Ruby)
Cyberark
Delivery Pipeline
Gitlab-ci
Kubernetes
Hashicorp
Terraform
Software Version Control
Devsecops
Jenkins
Vulnerability Analysis
Go
Job description
A financial firm is looking for a Lead Cloud Security Engineer. The engineer will focus on security engineering, AWS cloud security, IAM architecture, DevSecOps, CyberArk/Hashicorp, Active Directory, PAM, etc., * Maintain Hybrid Infrastructure Integrity Ensure the operational integrity of cloud and on-premises infrastructure throughout its lifecycle, including patching, version control, and system upgrades.
- Manage ongoing critical cloud service rollouts and automation Lead end-to-end deployment of mission-critical cloud services while developing and maintaining automation pipelines that streamline provisioning, configuration, and compliance enforcement across cloud environments.
- Assist in the deployment of new technologies and infrastructure aligned with security strategy Partner with architecture and engineering teams to evaluate, pilot, and deploy emerging cloud technologies, ensuring all implementations adhere to established security frameworks, organizational risk tolerance, and long-term strategic vision.
- Support, grow, and advance current processes and tools Continuously assess existing security processes and toolsets, driving improvements that mature the organization's cloud security posture through automation, documentation, and operational efficiency. Develop and implement system improvements that expand automated integrations and accelerate detection and remediation of functional and technical issues.
- Demonstrate in-depth knowledge of security controls and standards across cloud security, architecture, and security testing Apply expertise in industry frameworks (CIS, NIST CSF, CSA CCM) to design, implement, and validate security controls spanning cloud architecture, identity and access management, data protection, and security testing including vulnerability assessments and penetration testing.
Requirements
- Seven Years Experience with Security Engineering activities and testing.
- Five years of experience with DevOps processes
- Five years experience with AWS architecture and services.
- Advanced knowledge in identity and authentication architectures across cert-based, OAuth2/OIDC, IAM, AD, k8s, and Kerberos implementations
- Advanced knowledge and experience designing secure CI/CD and IaC ecosystems with Terraform, Ansible, and Jenkins at enterprise scale.
- Proficiency providing operational and engineering support for one or more of the following: CyberArk, HashiCorp Vault, Active Directory Certificate Services (ADCS), HSMs, and Public Key Infrastructure (PKI).
- Expertise in DevOps and DevSecOps practices and tooling. Hands-on expertise across CI/CD pipeline development and automation tools such as Jenkins, GitHub Actions, or GitLab CI, leveraging infrastructure-as-code frameworks (Terraform, Ansible) and scripting languages (Python, Groovy, Bash, GoLang) to embed security controls throughout the software development lifecycle.
- Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation.