Cloud Infrastructure and Cybersecurity Engineer

Dermalogica continues to lead the professional skincare industry with distribution in over 80 countries. Our entrepreneurial spirit, hands-on environment, and fast-paced culture encourage employees to be their best, bringing innovative solutions to reach the skincare professional and consumer. We are highly energetic, passionate, and results oriented. You will find that Dermalogica is a very special place, with tremendous opportunities ahead for us, all building upon a record of achievement.

The challenge is to build on the legacy of our brand, our experienced team, and our industry-leading education to deliver profitable growth. One of the key elements for our success, and critical for our growth, is bringing in the right people to join our team. We invite you to come and make a real difference and grow your career with the global leader in skincare.

Summary

The Cloud Infrastructure and Security Engineer is responsible for analyzing, designing, implementing, and optimizing enterprise cloud infrastructure, identity and access management (IAM), cybersecurity controls, endpoint platforms, and core productivity services across Windows and macOS environments. This role applies advanced technical expertise and independent judgment to evaluate business and system requirements, define technical standards, design secure and scalable solutions, and resolve complex infrastructure and access issues. The position supports multi-cloud environments including Microsoft Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS), as well as IAM platforms such as Microsoft Entra ID, Okta, and Google Cloud Identity or comparable solutions, and contributes to reliable, secure, and compliant operations through systems analysis, access governance, automation, incident response support, and the responsible use of AI-enabled productivity and engineering tools.

Key Responsibilities

• Analyze business, operational, and technical requirements to design secure, scalable, and resilient cloud, IAM, endpoint, and security solutions
• Design, implement, and optimize identity and access controls, including single sign-on (SSO), multi-factor authentication (MFA), lifecycle management, conditional access, role-based access, provisioning, and third-party integrations
• Architect, configure, and improve multi-cloud infrastructure across Microsoft Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS), including compute, storage, networking, IAM, backup, resilience, and lifecycle management
• Evaluate, implement, and administer IAM platforms such as Microsoft Entra ID, Okta, and Google Cloud Identity, or comparable identity solutions
• Develop, implement, and maintain cybersecurity controls, standards, and baselines, including access governance, endpoint protection, logging, vulnerability remediation, and configuration hardening
• Perform systems analysis and advanced troubleshooting to identify root causes, assess risk, and resolve complex cloud, IAM, endpoint, and security issues
• Monitor cloud, IAM, endpoint, and security environments for performance, availability, and suspicious activity, and determine appropriate technical responses in support of incident investigation and response efforts
• Establish and maintain technical standards, architecture documentation, operating procedures, access review processes, and operational runbooks
• Lead or materially contribute to cloud migrations, infrastructure upgrades, modernization efforts, and security improvement initiatives
• Automate administrative and security processes using PowerShell, shell scripting, and other automation tools
• Use AI-enabled tools such as Microsoft Copilot, Claude, ChatGPT, or comparable platforms to improve documentation, analysis, automation, knowledge retrieval, and operational efficiency in alignment with security and data governance requirements
• Partner with infrastructure, security, compliance, vendors, and support teams to evaluate solutions, guide implementations, and address escalated technical matters

Qualifications

• 5+ years of experience supporting enterprise cloud infrastructure, systems administration, IAM, endpoint engineering and management, cybersecurity operations, or closely related technical environments
• Experience with one or more major cloud platforms such as Microsoft Azure, Google Cloud Platform (GCP), or Amazon Web Services (AWS)
• Experience with IAM platforms such as Microsoft Entra ID, Okta, Google Cloud Identity, or comparable identity providers
• Working knowledge of cybersecurity principles, including least privilege access, zero trust concepts, endpoint security, logging, vulnerability management, and configuration hardening
• Experience managing Windows and macOS endpoint environments and endpoint management platforms
• Experience with scripting and automation using PowerShell, shell scripting, or similar tools
• Strong troubleshooting, analytical, documentation, and cross-functional collaboration skills
• Experience using AI-enabled productivity or engineering tools such as Microsoft Copilot, Claude, ChatGPT, or comparable platforms in a secure and effective manner is preferred
• Relevant cloud, IAM, cybersecurity, or endpoint management certifications are preferred

Preferred Attributes

• Demonstrates sound judgment, accountability, and a proactive approach to problem-solving
• Communicates clearly with technical and non-technical stakeholders
• Maintains a strong customer service mindset while balancing security and operational priorities
• Adapts well in a fast-paced environment with evolving technologies and business needs

This position will be based out of the corporate headquarters in Carson, CA with applicable hybrid in-office work guidelines. The expected annual base salary range for this position is $90K to $120K.The exact base salary is determined by various factors including experience, skills, education, and budget. This role is eligible for participation in our company bonus plan, rewarding personal performance and company results.

If you are ready to contribute to Dermalogica's mission, we would love to hear from you! To be considered for this role, please complete your online application. A member of the Human Resources team will contact you if your experience and skills are a match for the position.

Dermalogica is an equal opportunity employer committed to fostering an inclusive culture where all employees are valued, supported, and empowered to succeed.