Cloud Security Engineer

We are seeking a highly skilled and experienced Cloud Security Engineer to join our Security Infrastructure Team. This role is critical in designing, implementing, and maintaining a secure cloud environment while ensuring alignment with the organization's broader security architecture. You will work closely with cross-functional teams to build and maintain secure infrastructure, ensuring that our cloud platforms are resilient, scalable, and compliant with security best practices.

Responsibilities:

1. Cloud Security Engineering:

• Design, implement, and maintain cloud security solutions across public, private, and hybrid cloud environments (e.g., AWS, GCP, Alibaba).
• Develop and manage cloud-specific security controls, such as Identity & Access Management (IAM), encryption, key management, and secure configuration baselines.
• Automate security processes using Infrastructure as Code (IaC) tools like Terraform.
• Monitor and respond to cloud-related security threats, vulnerabilities, and incidents.

2. Security Architecture:

• Collaborate with the SRE team to design and implement secure cloud architectures that align with organizational goals.
• Conduct threat modeling and risk assessments to identify potential security gaps in cloud platforms.
• Evaluate and recommend security tools and technologies to enhance the organization's cloud security posture.
• Translate business and technical requirements into secure and scalable cloud solutions.

3. Compliance and Governance:

• Ensure compliance with industry standards and regulatory frameworks (e.g., ISO 27001, NIST, GDPR, SOC 2).
• Implement and maintain security policies, procedures, and guidelines for cloud environments.
• Perform regular audits and assessments to validate adherence to security and compliance requirements.

• Bachelor’s degree in Computer Science, Information Security, or a related field; equivalent experience considered.
• 6+ years of experience in cloud security engineering, security operations, or related roles.
• Strong expertise in AWS, including security services and configurations.
• Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform
• In-depth understanding of security principles, including IAM, encryption, network security, and vulnerability management.
• Proficient in scripting languages for automation and tooling.
• Strong analytical and problem-solving skills with the ability to work in a fast-paced