Cloud Network Security Engineer

Role: Cloud Network Security EngineerLocation: - Bellevue, WA Job Description, Key Responsibilities:IaC Security Scanning & Hardening: Integrate IaC security scanning tools (e.g., Checkov, TFSec, Snyk IaC, Terraform Validator) into CI/CD pipelines. Analyze and remediate findings from IaC scans (Terraform, CloudFormation, ARM templates). Develop custom policies for IaC scanning tools based on organizational security standards.Firewall Implementation & Tuning: Design and implement native firewall rules across cloud platforms (AWS, Azure, GCP). Perform rule optimization, consolidation, and risk-based tuning to reduce attack surfaces. Conduct regular reviews and audits of firewall configurations and access controls.                                                                                                                                       Risk Management & Compliance: Align firewall and IaC security policies with industry standards (NIST, CIS, ISO 27001). Support internal and external audits by providing documentation and evidence of controls.Requirements:7 years of experience in cloud security, network security, or DevSecOps.Hands-on experience with Terraform, CloudFormation, or other IaC tools.Deep understanding of cloud-native firewall services (AWS, Azure, GCP).Proficiency in security tools: Checkov, Prisma Cloud, Aqua, Snyk, etc.Certifications preferred: AWS/Azure/GCP Security Specialty, CISSP, CCSP, Terraform Associate.Proficiency in Automation by using Powershell, Bash and Python, etc.

Salary : $117,900 - $161,400