Cloud Security Engineer, Principal

We are seeking a highly skilled Cloud Security Engineer, Principal to design, implement, and maintain secure infrastructure across multicloud environments (Azure, AWS, Google Cloud Platform). This role ensures alignment with enterprise security policies, regulatory requirements, and best practices while protecting cloud assets, maintaining compliance, and supporting secure digital transformation initiatives.

This position will also support the migration and lifecycle management of a portfolio of enterprise applications transitioning into a consolidated environment. The engineer will play a critical role in ensuring secure migration, operational continuity, and adherence to cybersecurity standards throughout the application lifecycle.

The ideal professional will contribute to secure architecture, system design, and application governance, ensuring that all security requirements are fully implemented and risks are effectively mitigated.

Key Responsibilities

Cloud Security & Architecture

• Lead cloud security reviews and ensure compliance with enterprise standards.
• Maintain awareness of cloud resources, data classifications, and application architecture.
• Act as the primary contact for cybersecurity issues related to assigned cloud workloads.
• Design and deploy cloud security controls, automation, and monitoring.

Governance, Risk & Compliance

• Manage cybersecurity KPIs and provide regular reporting to senior leadership.
• Support vulnerability management, risk assessments, and security control testing.
• Oversee user access management, identity governance, and thirdparty risk.
• Contribute to risk management and business continuity enhancements.
• Support internal and external audits with evidence, documentation, and remediation.

Security Engineering & DevSecOps

• Guide application teams on secure design, testing, and deployment practices.
• Manage vulnerability scanning, code reviews, and security tooling (e.g., Qualys, GitHub, FOSS).
• Collaborate with IT, engineering, and business teams to implement secure solutions.
• Develop and maintain security policies, documentation, and frameworks.
• Support security incident response and collaborate with global and regional teams as needed.

Awareness & Compliance

• Promote cybersecurity awareness across the organization.
• Ensure compliance with local and regional regulatory requirements.
• Monitor evolving security threats and implement mitigation strategies.

Required Education

Bachelor s or Master s degree in:

• Cyber Security
• Information Technology
• Computer / Information Science
  or equivalent experience

Required Skills & Experience

10+ years of relevant IT experience, including many of the following:

• Indepth knowledge of IT and cloud security across Azure, AWS, and Google Cloud Platform.
• Handson experience with cloudnative security tools and enterprise security platforms.
• Familiarity with security frameworks, guidelines, and regulatory requirements.
• Experience with software development processes and secure SDLC practices.
• Strong understanding of evolving threats, vulnerabilities, and mitigation techniques.
• Experience guiding developers through security requirements and architecture decisions.
• Proficiency troubleshooting and deploying applications in complex environments.
• Working knowledge of:
  • NIST frameworks
  • OWASP
  • OSSTMM
• Excellent communication skills with the ability to explain technical concepts to both technical and nontechnical audiences.
• Experience conducting security risk assessments in complex environments.

Certifications (Highly Preferred)

• CISSP
• CCSP
• Other relevant cloud or security certifications