Cloud Cybersecurity Engineer (W2 Contract Only)

Job Title: Cloud Cybersecurity Engineer

Location: Sterling, VA (Hybrid)

Duration: 6 Months (Extension Possible)

About the Role

We are seeking a highly skilled Cloud Cybersecurity Engineer to join our team. This is a hands-on technical role focused on securing enterprise-scale public cloud environments, primarily within Google Cloud Platform (GCP). The ideal candidate will have strong expertise in cloud vulnerability management, CSPM/CNAPP tools, and security automation.

Key Responsibilities

• Act as a hands-on Cloud Security Engineer securing enterprise-scale GCP environments.
• Design, implement, and manage cloud vulnerability management processes across compute, containers, serverless, and platform services.
• Operate and optimize CSPM/CNAPP tools (e.g., Wiz, Orca, Prisma Cloud) to identify risks, prioritize vulnerabilities, and drive remediation.
• Develop automation and security tooling using Python or similar scripting languages.
• Integrate security controls into CI/CD pipelines and DevSecOps workflows.
• Review and harden GCP configurations, including IAM, networking, logging, and storage.
• Collaborate with engineering and DevOps teams to remediate vulnerabilities.
• Support security assessments for AI/ML workloads and cloud-native data platforms.
• Contribute to cloud security standards, policies, and documentation.
• Support multi-cloud environments including AWS and Azure.
• Stay updated on emerging cloud threats and security best practices.

Key Focus Areas

• Cloud Vulnerability Management – 30%
• GCP Security Engineering & Hardening – 15%
• Security Automation & Python Development – 15%
• CSPM/CNAPP Operations – 10%
• CI/CD & DevSecOps Integration – 10%
• Architecture Reviews & Collaboration – 10%
• AI/ML Security Support – 5%
• Documentation & Learning – 5%

Required Qualifications

• 7 years of experience in cloud security and vulnerability management.
• Strong hands-on experience with GCP and AWS in production environments.
• Proven expertise in Cloud Vulnerability Management (identification, prioritization, risk assessment, remediation).
• 3 years of experience with CSPM/CNAPP tools (e.g., Wiz, Orca, Prisma Cloud, Lacework).
• Proficiency in Python or similar scripting languages for automation.
• Strong understanding of:
• Cloud IAM and least-privilege access
• Cloud networking (VPCs, segmentation, secure connectivity)
• Container security and Kubernetes
• Infrastructure-as-Code (Terraform preferred)

Preferred Qualifications

• Cloud certifications such as:
• GCP Professional Cloud Security Engineer
• AWS Security Specialty / Solutions Architect
• Azure Security Engineer / Solutions Architect
• Experience securing AI/ML workloads.
• Knowledge of AWS, Azure, and OCI security architectures.
• Experience with CI/CD integrations and tools like Slack, Jira.
• Familiarity with SIEM tools (e.g., Splunk).
• Experience with Brinqa is a plus.

Soft Skills

Strong communication and collaboration skills.

• Ability to work effectively with cross-functional teams.
• Strong problem-solving and analytical mindset.