Cloud Security Engineer

We are seeking a highly skilled Cloud Security Engineer with strong Application Security expertise to join our security architecture team. This role will be responsible for designing, implementing, and maintaining secure cloud environments and applications across multi-cloud platforms, with a focus on Azure. The ideal candidate will have hands-on experience with cloud-native security tools, DevSecOps practices, and compliance frameworks such as NIST 800-53, SOC 2, and CIS Controls.

Cloud Security Engineering

• Design and implement security controls for cloud infrastructure (Azure, AWS, GCP).
• Develop and maintain security architecture patterns (e.g., hub-and-spoke, Zero Trust).
• Integrate security tools such as Wiz, Microsoft Defender for Cloud, Silverfort, and Terraform.
• Conduct threat modeling and risk assessments for cloud-native services.
• Collaborate with IAM, SOC, and GRC teams to align cloud security with enterprise policies.

Application Security

• Perform secure code reviews, static/dynamic analysis, and vulnerability assessments.
• Integrate security into CI/CD pipelines using tools like Snyk, Checkmarx, or Veracode.
• Guide development teams on secure coding practices and OWASP Top 10.
• Design and implement API security strategies including OAuth2, OpenID Connect, and mTLS.
• Support remediation of application vulnerabilities and provide technical guidance.

Compliance & Governance

• Map cloud and application security controls to compliance frameworks (NIST 800-53, SOC 2, CIS).
• Assist in audits and evidence collection for regulatory compliance.
• Maintain documentation of security architecture, policies, and procedures.
• Bachelor’s degree in Computer Science, Cybersecurity, or related field.
• 3-4 years of experience in cloud security engineering and application security.
• Strong understanding of Azure security services and architecture.
• Experience with infrastructure-as-code (Terraform, Bicep).
• Familiarity with Snowflake security features and data protection strategies.
• Knowledge of identity and access management (Azure AD, Conditional Access, MFA).
• Hands-on experience with DevSecOps tools and practices.

Preferred Qualifications

• Certifications: Azure Security Engineer Associate, CISSP, CCSP, OSCP, or GIAC.
• Experience with multi-subscription Azure environments.
• Familiarity with Zero Trust architecture and implementation.
• Experience with security automation and orchestration.

Soft Skills

• Strong analytical and problem-solving skills.
• Excellent communication and collaboration abilities.
• Ability to work independently and in cross-functional teams.
• Passion for continuous learning and staying current with security trends.

Total Rewards: We understand compensation is an important factor as you consider the next step in your career. The estimated salary range for this position is $95,000 to $120,000 and is based on multiple factors, including job-related knowledge/skills, experience, geographical location, as well as other factors. This position is eligible for annual bonus compensation with a target payout of 10% of the base salary. This position also provides health benefits such as medical, dental and vision; wellness benefits such as mental and financial health; and retirement savings (401K) commensurate with the standard rewards offered in each individual location or country. We also provide full-time employees with paid time off including vacation (15 days), holiday including floating holidays (12 days) and sick time off (72 hours).

#Li-Sg2

#Li-Hybrid