Cloud Security Engineer

HonorVet Technologies

Denver, CO(remote)

JOB DETAILS
SKILLS
ARM (Advanced RISC Machine), Automation, Bash Scripting, Benchmarking, Best Practices, Cloud Applications, Cloud Architecture, Cloud Computing, Communication Skills, Computer Security, Cryptography, Documentation, Enterprise Protection, Federal Government, Fortune 500 Customers, Hybrid Cloud, ISO (International Organization for Standardization), ISO 9001, Identity Data Management, Knowledge Transfer, Machine Tool, Microsoft Product Family, Microsoft Windows Azure, Model Review, Policy Development, Policy Implementation, Protective Services, Python Programming/Scripting Language, Scripting (Scripting Languages), Security Analysis, Security Architecture, Security Information and Event Management (SIEM), Software Engineering, State Government, Technical Recruiting, Technical Writing, Telemetry, Threat Modeling, Windows PowerShell
LOCATION
Denver, CO
POSTED
Today

HonorVet Technologies is a veteran-owned IT staffing firm, ISO 9001 and ISO 27001 certified, working with federal agencies, state governments, and Fortune 500 enterprise clients across the US. What makes us different isn’t a tagline — it’s the way we work. We don’t forward resumes and hope for the best. We take the time to understand where a professional like you is headed and only reach out when we genuinely believe there’s a fit worth exploring.

Job Title: Cloud Security Engineer
Duration: 3+ Months
Location: Remote
Remote
 
Job Summary
We are seeking an experienced Azure Cloud Security Engineer to support the design, implementation, and optimization of enterprise cloud security controls across Microsoft Azure. The ideal candidate will have strong expertise in Azure security services, cloud governance, CSPM, identity and access management, infrastructure-as-code (IaC), and cloud-native security tooling. This role involves implementing security guardrails, performing security assessments, automating compliance, and collaborating with platform and security teams to strengthen the organization’s cloud security posture.
Key Responsibilities

  • Design and implement Azure landing zone security controls, including identity, networking, VNets, NSGs, and private endpoints.
  • Configure, deploy, and optimize Microsoft Sentinel, Microsoft Defender XDR, Defender for Cloud, and Defender for Cloud Apps (CASB).
  • Perform Cloud Security Posture Management (CSPM) assessments against CIS Azure Foundations Benchmark and Microsoft Cloud Security Benchmark (MCSB), and recommend remediation plans.
  • Build and manage Azure Policy initiatives, policy-as-code, and automated remediation to enforce governance and reduce configuration drift.
  • Implement encryption, key management, and certificate governance using Azure Key Vault.
  • Configure Azure Monitor, Log Analytics, telemetry, alerting, and SIEM integrations.
  • Secure Azure services including AKS, Container Apps, Azure Functions, Logic Apps, and Azure Container Instances.
  • Conduct cloud architecture security reviews and threat modeling.
  • Develop Infrastructure-as-Code (Terraform, Bicep, ARM) security guardrails and vulnerability management workflows.
  • Support cloud security incident investigation and containment activities.
  • Create documentation, operational runbooks, standards, and knowledge transfer materials.

Required Skills

  • 4–7 years of hands-on experience in Azure Cloud Security Engineering.
  • Strong experience with Microsoft Azure security services, including Defender for Cloud, Microsoft Sentinel, Defender XDR, and Defender for Cloud Apps (CASB).
  • Experience implementing Azure Policy, governance frameworks, and Infrastructure-as-Code (Terraform, Bicep, or ARM).
  • Experience performing CSPM assessments using CIS Azure Foundations Benchmark and Microsoft Cloud Security Benchmark (MCSB).
  • Strong knowledge of Azure IAM, networking, encryption, Key Vault, and cloud-native security best practices.
  • Experience securing hybrid cloud environments.
  • Proficiency in scripting and automation using PowerShell, Python, Bash, KQL, or similar technologies.

Preferred Qualifications

  • Experience with container and Kubernetes security (AKS).
  • Knowledge of MITRE ATT&CK framework and cloud detection engineering.
  • Experience with cloud monitoring, logging, and security automation.
  • Strong documentation and technical communication skills.

Certifications

  • Required:Microsoft Certified Azure Security Engineer Associate (AZ-500)
  • Preferred:CCSP or equivalent cloud security certification

About the Company

H

HonorVet Technologies

 Is a leading Service Disabled Veteran Owned Small Business providing IT, Telecom and Medical Staffing.

COMPANY SIZE
50 to 99 employees
INDUSTRY
Staffing/Employment Agencies
EMPLOYEE BENEFITS
401K, Employee Referral Program, Life Insurance
FOUNDED
2015
WEBSITE
http://www.honorvettech.com