Cloud Security Engineer
Role details
Job location
Tech stack
Job description
The Cloud Security Consultant will be a key member of the Global Information Security (GIS) organization within the Business Information Security Officer (BISO) Cloud Security function, responsible for supporting and governing security controls across multi-cloud environments including AWS, Azure, and Google Cloud Platform (GCP). This role provides risk-based security consulting, review, and advisory services across cloud onboarding, architecture, and operations. The consultant will partner closely with cloud and risk teams to ensure security controls are effectively implemented, assessed, and aligned with enterprise policies and regulatory requirements., Support Cloud Governance Approval (CGA) and Security Process Integration (SPI) activities, ensuring alignment to defined metrics, reporting requirements, and operational standards. Document and maintain cloud security processes, procedures, guidebooks, and playbooks to support consistent governance and operational execution. Identify opportunities to automate existing manual processes, improving efficiency, scalability, and accuracy of cloud security operations. Perform risk reviews of cloud environments, including gathering and validating evidence to support informed decisions to approve or deny CGA requests. Conduct quality assurance (QA) reviews for Azure and AWS CGA cases to ensure alignment with approved services, workloads, and environmental security standards. Support high-volume governance operations, managing over 2,000+ Azure and AWS policy evaluations monthly, ensuring adherence to expanding cloud controls and SPI performance metrics. Maintain and enhance cloud control libraries for AWS and Azure by capturing new controls and documenting updates or changes to existing policies. Execute and support SPI processes, including tracking, measuring, and reporting on key security metrics and governance outcomes.
Requirements
- 5+ years of experience on cloud security tools such e.g., AWS Security Hub, Azure Defender, GCP SCC, WIZ, Sentinel etc.
- 3+ years of experience with Cloud security frameworks (NIST, CIS, ISO)
- Strong experience with Cloud Governance, Cloud-native controls and architectures, Bachelors degree in Information Systems or Computer Science, and/or equivalent combination of education and work experience within the domain areas of Cloud Security. 5+ years of experience in information security, cloud security, or risk consulting Working knowledge of AWS and Azure, with exposure or willingness to develop expertise in GCP Experience performing security risk assessments, control validation, and governance reviews Familiarity with Cloud security frameworks (NIST, CIS, ISO) and Cloud-native controls and architectures Strong analytical skills with ability to collect and evaluate data at a micro-level for risk decisions Experience with Jira/Kanban workflows and Excel-based reporting and data tracking Desired Skills: Experience supporting CGA, governance, or security approval workflows Exposure to cloud security tools (e.g., AWS Security Hub, Azure Defender, GCP SCC) Relevant certifications (e.g., AWS, Azure, GCP, CISSP, CCSP)
Benefits & conditions
Benefits: Innova Solutions offers benefits( based on eligibility) that include the following: Medical & pharmacy coverage, Dental/vision insurance, 401(k), Health saving account (HSA) and Flexible spending account (FSA), Life Insurance, Pet Insurance, Short term and Long term Disability, Accident & Critical illness coverage, Pre-paid legal & ID theft protection, Sick time, and other types of paid leaves (as required by law), Employee Assistance Program (EAP).