Senior Cloud Security Engineer

MUST:

• CISSP- REQUIRED
• 12 total years in tech minimum, with 6 years min of cloud security engineering
• Must have been a cloud security engineer
• Strong with azure and AWS
• Senior cloud security engineer
• Azure security certified
• Strong cloud security experience
• Application scanning tools
• Experience with benchmarks in cloud
• NIST controls
• Dev sec ops experience
• Security cloud background
• Been apart of a security dept
• Knows Risk rank
• Critical vulnerabilities
• Coming up with solutions for security
• Multi cloud environment , on prem assets to azure
• Large enterprise migration to reduce costs

PLUS:

• Multiple could security certifications with in Azure and AWS
• Healthcare preferred

DAY TO DAY:

Our healthcare client is going through a large enterprise migration from on prem assets to azure in a multi cloud environment. Will use the following: ISBARQ - Information, Situation, Background, Assessment, Recommendations, Questions.

The Cloud Security Engineer will be responsible for shaping and advancing the organization’s cloud security capabilities. This position requires strong technical depth, close collaboration with cross-functional teams, and the ability to design, implement, and continually enhance security controls across cloud platforms. The role supports both project-driven initiatives and ongoing operational security activities, with a focus on enabling secure cloud adoption, improving tooling and processes, strengthening hybrid/cloud controls, automating security workflows, and delivering risk-aligned security outcomes.

• Secure and manage protections across multi-cloud environments.

• Oversee and optimize identity and access management across cloud platforms.

• Apply broad knowledge of cloud security service areas, including relevant tools, governance practices, and operational processes.

• Work closely with internal teams, external partners, and vendors to deploy, maintain, and refine security technologies across network, endpoint, identity, and cloud ecosystems.

• Enhance cloud security posture by validating security alerts, triaging escalations, and collaborating with managed service providers to improve detection and prevention capabilities.

• Develop and maintain incident response procedures, runbooks, tabletop exercise materials, and system hardening guidance.

• Ensure cloud architectures and security implementations align with organizational policies, internal standards, and widely adopted industry frameworks (e.g., NIST, HIPAA-like requirements, PCI-DSS, zero-trust models, CIS benchmarks, and major cloud provider architectural best practices).