This is a remote position.
Job Description: Cloud Security Engineer – 5+yrs
Summary
We are looking for an experienced
Cloud Security Engineer
to support and enhance the security posture of multi-cloud environments. This role focuses on cloud security operations, monitoring, incident response, and implementation of best practices across cloud, endpoint, and email security domains.
Key Responsibilities
Security Findings & Remediation Documentation
â Analyze and document cloud, email, endpoint, and security monitoring findings.
â Produce clear and actionable documentation covering:
o Risk assessment and severity classification
o Impact analysis
o Recommended remediation actions
â Maintain findings documentation within ticketing systems, reports, or other designated
platforms.
Alert Triage & Investigation
â Triage, investigate, and classify security alerts across cloud and security platforms.
â Maintain complete and accurate investigation records, including:
o Analysis performed
o Containment or mitigation actions (if applicable)
o Escalation details
o Final alert disposition
AI Security in Cloud Environments
â Secure AI/ML workloads deployed in cloud environments, including training pipelines, data
storage, and inference endpoints.
â Monitor usage of AI services (including third-party AI APIs) for anomalies, misuse, or
unauthorized access.
â Collaborate with engineering teams to ensure secure deployment of AI services following
cloud security best practices.
â Contribute to governance and policy development for responsible and secure AI usage in the cloud Configuration & Security Posture Assessment
â Conduct secure configuration reviews across cloud environments.
â Perform IAM assessments and analyze CSPM findings.
â Document posture assessment results and provide recommendations for security posture
improvements.
â Support continuous monitoring and tuning of cloud security controls.
Security Automation & Tooling
â Design, develop, and maintain security automation scripts and workflow enhancements.
â Create automation artifacts using scripting languages such as Python.
â Provide sufficient documentation and usage notes to enable ongoing operation and
maintenance by internal teams.
â Build cloud security infrastructure using infrastructure as code tools such as Terraform
Operational Metrics & Reporting
â Prepare periodic cloud security operational reports, including:
o Alert volumes and trends
o Remediation progress
o Posture improvements
o Tool tuning and optimization efforts
â Present concise status updates to stakeholders as requested.
Incident Response Support
â Support investigation and response to security incidents impacting cloud environments.
â Contribute to incident reports, investigation summaries, timelines, and technical analysis.
â Assist with root-cause analysis and corrective action recommendations.
Required
Skills & Qualifications
â Bachelor’s degree in computer science, Cybersecurity, or related field 5+years of experience in Cloud Security / Security Operations.
â Hands-on experience with AWS, Azure,GCP, or OCI security services
â Strong knowledge of IAM, network security, and cloud-native security controls.
â Experience with CSPM tools and EDR platforms like Crowdstrike
â Familiarity with SIEM tools and incident response processes.
â Hands-on experience with identity-aware access solutions such as Teleport
(or similar platforms) for secure access to infrastructure and services.
â Proficiency in scripting languages like Python.
â Foundational understanding of securing AI/ML workloads in cloud environments (e.g., model access control, API security, data protection).
Preferred
Qualifications
â Certifications such as AWS Security Specialty, Azure Security Engineer, CCSP, or CISSP
Experience with automation, SOAR platforms, or DevSecOps practices.
â Exposure to compliance frameworks (ISO 27001, SOC 2, etc.).
â Understanding of email security protocols (SPF, DKIM, DMARC).