Senior Cloud Security Engineer

Build the Future with AspenView Technology Partners

At AspenView, we are passionate about transforming the way organizations approach technology. We specialize in creating high-performing, nearshore IT teams to help North American clients innovate faster and more efficiently. As we continue to grow, we’re looking for exceptional people to join our team and help drive impactful change across industries.

Why Join AspenView?

At AspenView, we’re more than a nearshore IT partner—we’re a people-first, purpose-driven company that believes great culture drives great outcomes. We’re passionate about connecting talent and technology to deliver measurable value for clients—and meaningful career paths for our people.

Here’s what you can expect:

• Competitive base
• Comprehensive benefits and wellness support
• Flexible work model: hybrid, remote, or in-office
• Real growth opportunities and leadership visibility
• Inclusive, respectful culture that blends U.S. innovation with Colombian heart
• A company that listens, invests in you, and celebrates wins together

The Senior Cloud Security Engineer plays a critical role within our client’s Architecture & Engineering function. You will provide deep technical expertise and architectural insights to secure cloud platforms and enable effective security operations.

This role focuses on designing, engineering, and operationalizing cloud security controls across Azure environments, ensuring alignment with Zero Trust principles, regulatory requirements, and broader cybersecurity strategy.

What you will do:

Cloud Architecture & Engineering

• Provide hands-on expertise and architectural guidance across Azure Front Door (AFD), Web Application Firewall (WAF), and Microsoft Defender for Cloud (DFC), ensuring secure configuration and policy enforcement.
• Design, develop, and maintain security blueprints and reference architectures for cloud workloads, APIs, and containerized platforms (e.g., Kubernetes, Docker).
• Deliver cloud security architecture advisory for Microsoft Azure, including landing zone governance, network segmentation, and Identity-centric security.
• Engineer and enforce cloud-native security controls, including encryption, key management, and secure logging aligned with NIST and CIS benchmarks.

Security Operations & Threat Detection

• Engineer the integration of cloud telemetry (audit logs, network flow logs, API activity) into Microsoft Sentinel to enable centralized monitoring and detection.
• Develop and tune cloud-specific detection use cases addressing risks such as privilege escalation, anomalous user behavior, and lateral movement.
• Review and strengthen policies related to Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) to remediate misconfigurations and vulnerabilities.
• Provide cloud incident response expertise, supporting investigations involving compromised credentials, API abuse, and advanced cloud-native threats.

Governance & DevSecOps

• Partner closely with DevOps and Platform Engineering teams to embed security into CI/CD pipelines and enforce secure Infrastructure-as-Code (IaC) patterns.
• Produce cloud security posture and risk reports, mapping control effectiveness against frameworks such as NIST CSF, ISO 27001, HIPAA, PCI, and GDPR.
• Advise on emerging cloud technologies, including serverless architectures and AI/ML workloads.

Tools & Technologies:

• Cloud Platform: Microsoft Azure (Expert level).
• Security Services: Azure Front Door, WAF, Microsoft Defender for Cloud, Azure Monitor, Microsoft Sentinel.
• Architecture: Zero Trust principles, Landing Zones, Network Segmentation.
• Containers: Kubernetes, Docker.
• Frameworks: NIST CSF, CIS Benchmarks, ISO 27001.

What you bring:

• Experience: 7+ years of experience in cybersecurity, with 5+ years focused on cloud security engineering and architecture specifically in Microsoft Azure.
• Technical Expertise: Strong hands-on experience with Azure security services (AFD/WAF, Defender for Cloud, Networking) and implementing CSPM/CWPP capabilities.
• Architectural Knowledge: Solid understanding of Zero Trust architecture, IAM, and secure networking principles.
• Education: Bachelor’s degree in Computer Science, Information Security, Engineering, or equivalent practical experience.
• Certifications (Preferred): Microsoft Certified: Azure Security Engineer Associate (AZ-500), Azure Solutions Architect Expert, CISSP, or CCSP.

Equal Opportunity Employer:

AspenView is proud to be an equal opportunity employer. We believe in creating an environment where all employees feel welcome, valued, and empowered to succeed. We celebrate diversity and strive to build a culture of inclusion where all individuals, regardless of their race, color, gender, gender identity or expression, sexual orientation, disability, age, or any other characteristic, can thrive. We encourage applicants from all walks of life to join our team and make a lasting impact.