Sign upLog in

Cloud Security Engineer

CoreWork Staffing

Florida, Florida

Apply
JOB DETAILS
SKILLS
ARM (Advanced RISC Machine), Access Control, Amazon Web Services (AWS), Application Hosting, Applications Security, Automation, Best Practices, Cloud Architecture, Cloud Computing, Computer Science, Computer Security, Continuous Deployment/Delivery, Continuous Improvement, Continuous Integration, Corrective Action, Cryptography, Data Recovery, DevOps, External Audit, Finance, Firewalls, GCP (Good Clinical Practices), GitHub, HIPAA (Health Insurance Portability and Accountability Act), Health Insurance, ISO (International Organization for Standardization), Identity Data Management, Identity Federation, Incident Response, Industry Standards, Information Technology & Information Systems, Information/Data Security (InfoSec), Internal Audit, Internet Security, Jenkins, Loss Prevention, Maintain Compliance, Microsoft Windows Azure, Multiplatform/Cross-Platform, Network Security, On Call, PCI-DSS, Penetration Testing, People Management, Performance Metrics, Product Lifecycle, Protective Services, Regulatory Compliance, Risk Analysis, Risk Management, Root Cause Analysis, Security Analysis, Security Architecture, Security Attacks, Security Auditing, Security Compliance, Security Design, Security Information and Event Management (SIEM), Security Infrastructure, Security Monitoring, Security Policy, Single Sign-On (SSO), Software Architecture, Software Engineering, Software as a Service (SaaS), Splunk, Systems Administration/Management, Technical Support, Technical/Engineering Design, Telemetry, U.S. National Institute of Standards and Technology (NIST)
LOCATION
Florida, Florida
POSTED
1 day ago

Cloud Security Engineer

Position Overview

We are seeking a highly skilled Cloud Security Engineer to design, implement, and maintain secure cloud infrastructure across enterprise environments. This role is responsible for ensuring the confidentiality, integrity, and availability of cloud-hosted systems, applications, and data across platforms such as AWS, Azure, and/or GCP.

The ideal candidate has strong experience in cloud security engineering, infrastructure protection, identity and access management, security automation, and DevSecOps practices. They will work closely with Cloud Engineering, DevOps, Security Architecture, and Application teams to embed security controls into cloud-native environments and ensure compliance with security standards and frameworks.

Location Requirement

To support collaboration with engineering and security teams, candidates must currently reside in one of the following metropolitan areas in the United States:

  • Dallas

  • Houston

  • Austin

  • Atlanta

  • Jacksonville

  • Miami

  • Nashville

  • Charlotte

  • Phoenix

Candidates outside of these locations will not be considered.

Key Responsibilities

Cloud Security Engineering

  • Design, implement, and maintain secure cloud infrastructure across AWS, Azure, and/or GCP

  • Configure and manage cloud security controls including firewalls, security groups, and network policies

  • Implement cloud-native security services (e.g., CSPM, CWPP, CWPP, SIEM integrations)

  • Ensure secure configuration of cloud resources, workloads, and services

  • Continuously assess and improve cloud security posture

Identity & Access Management (IAM)

  • Implement and manage identity and access control policies in cloud environments

  • Enforce least privilege access and role-based access control (RBAC)

  • Configure SSO, MFA, federation, and identity lifecycle management

  • Monitor and remediate unauthorized or excessive access permissions

  • Support privileged access management (PAM) implementations

Security Monitoring & Threat Detection

  • Monitor cloud environments for security threats, anomalies, and vulnerabilities

  • Integrate cloud logs and telemetry into SIEM platforms

  • Respond to security alerts and incidents in cloud infrastructure

  • Conduct root cause analysis and implement corrective actions

  • Develop detection rules and automation for threat prevention

DevSecOps & Automation

  • Integrate security into CI/CD pipelines and DevOps workflows

  • Automate security checks, policy enforcement, and compliance validation

  • Implement Infrastructure as Code (IaC) security scanning (Terraform, CloudFormation, etc.)

  • Support container and Kubernetes security best practices

  • Collaborate with DevOps teams to shift security left in development lifecycle

Vulnerability Management & Risk Reduction

  • Perform cloud infrastructure vulnerability assessments and remediation

  • Identify misconfigurations and security gaps in cloud environments

  • Support penetration testing and security assessments

  • Track remediation of security findings and risks

  • Improve overall cloud security posture through continuous assessment

Compliance & Governance

  • Ensure cloud environments comply with industry standards and frameworks (e.g., SOC 2, ISO 27001, NIST, PCI-DSS, HIPAA)

  • Support internal and external security audits

  • Maintain documentation for security controls and configurations

  • Enforce data protection, encryption, and privacy requirements

  • Assist in cloud governance and policy enforcement

Data Protection & Encryption

  • Implement encryption strategies for data at rest and in transit

  • Manage key management systems (KMS) and secrets management solutions

  • Ensure secure storage and handling of sensitive data in cloud environments

  • Support data loss prevention (DLP) initiatives

  • Validate secure backup and recovery processes

Collaboration & Technical Support

  • Work closely with Cloud Engineers, DevOps, Security Architects, and Software Engineers

  • Support secure cloud architecture design and implementation

  • Provide guidance on cloud security best practices

  • Participate in security design reviews and technical discussions

  • Assist in incident response and post-incident remediation

Qualifications

Required

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related field

  • 3+ years of experience in cloud security, infrastructure security, or DevSecOps roles

  • Strong experience with AWS, Azure, and/or GCP security services

  • Knowledge of IAM, network security, encryption, and cloud architecture principles

  • Experience with CI/CD pipelines and DevOps tools

  • Familiarity with Infrastructure as Code (Terraform, CloudFormation, ARM templates, etc.)

  • Strong understanding of security monitoring and incident response

  • Knowledge of vulnerability management and risk assessment practices

  • Strong problem-solving and analytical skills

  • Must currently reside in one of the approved locations listed above

Preferred (Nice-to-Have)

  • Cloud certifications such as:

    • AWS Certified Security – Specialty

    • Microsoft Azure Security Engineer Associate

    • Google Professional Cloud Security Engineer

  • Experience with SIEM tools (Splunk, Sentinel, QRadar, etc.)

  • Experience with container security and Kubernetes security tools

  • Knowledge of DevSecOps platforms (GitHub Actions, GitLab CI/CD, Jenkins)

  • Familiarity with Zero Trust architecture principles

  • Experience with security automation and orchestration tools (SOAR)

  • Knowledge of compliance frameworks such as SOC 2, ISO 27001, NIST, PCI-DSS, HIPAA

  • Experience in regulated industries such as finance, healthcare, insurance, or enterprise SaaS

Key Performance Indicators (KPIs)

Cloud Security Posture

  • Reduction in critical cloud misconfigurations

  • Cloud security compliance score improvements

  • Number of security findings remediated

  • Time to remediate vulnerabilities

Incident Detection & Response

  • Mean Time to Detect (MTTD) cloud security incidents

  • Mean Time to Respond (MTTR) to cloud incidents

  • Number of successfully mitigated threats

  • Alert accuracy and false positive reduction

Automation & Efficiency

  • Security automation coverage across cloud environments

  • CI/CD security integration coverage

  • Infrastructure as Code (IaC) policy enforcement rate

  • Reduction in manual security operations tasks

Compliance & Governance

  • Audit pass rate and compliance readiness

  • Policy enforcement effectiveness

  • Data protection and encryption compliance

  • Documentation accuracy and completeness

Collaboration & Impact

  • Engineering team adoption of security best practices

  • Stakeholder satisfaction ratings

  • Participation in architecture and design reviews

  • Contribution to security improvements and initiatives

Reporting To

  • Cloud Security Architect

  • Security Architect

  • Head of Cybersecurity

  • Director of Cloud Security

  • Chief Information Security Officer (CISO)

  • Chief Technology Officer (CTO)

Employment Type & Work Setup

  • Full-Time

  • Remote (Candidates must reside in approved locations)

  • Hybrid opportunities may be available based on business needs

  • Participation in on-call rotation for cloud security incidents when required

  • Agile, DevSecOps-driven environment

Work Environment & Conditions

  • Fast-paced cloud-native engineering environment

  • Collaboration with DevOps, Cloud Engineering, and Security teams

  • Strong focus on automation, scalability, and secure infrastructure design

  • Exposure to enterprise-scale cloud security challenges

  • Continuous learning in evolving cloud security technologies

  • Opportunities for advancement into Senior Cloud Security Engineer, Security Architect, or Cloud Security Lead roles


About the Company

C

CoreWork Staffing

Resume Resources

Free Resume TemplatesFree Resume Builder