Location: Chandler, AZ
Salary: $69.00 USD Hourly - $74.00 USD Hourly
Description: Security Configuration Baseline EngineerLocations: Chandler, AZ; Charlotte, NC; Las Colinas, TX
Employment Type: Contract (with potential for conversion)
About the RoleThe Security Configuration Baseline Engineer designs, implements, and operationalizes security configuration baselines across enterprise cloud and platform environments. This role focuses on
engineering and automation, translating security policies, regulatory requirements, and industry standards into
codified, enforceable, and auditable baselines.
You will work at the intersection of cloud security, governance, and automation-partnering with security, risk, and engineering teams to embed preventative controls, detect configuration drift, and support scalable enterprise governance through baseline-as-code capabilities.
This is a hands-on engineering role, not an advisory architecture position.
Responsibilities- Design and engineer security configuration baselines for cloud and enterprise platforms
- Translate security policies, risk requirements, and industry standards into baseline-as-code implementations
- Implement preventative guardrails, configuration drift detection, and exception workflows
- Map security controls to industry frameworks and regulatory standards (e.g., CIS, NIST, ISO)
- Support enterprise governance by producing clear, audit-ready documentation
- Collaborate with cloud, risk, compliance, and engineering partners to operationalize controls at scale
Minimum Qualifications- 5+ years of experience in cloud security, platform security, or security engineering
- 5+ years of experience with cloud technologies
- 3+ years of experience in risk and control management
- Hands-on experience with security configuration baselines or system hardening standards
- Experience writing automation or tooling using Python (2-4 years)
- Working knowledge of:
- Public cloud platforms (Azure and/or Google Cloud preferred)
- Infrastructure as Code tools such as Terraform
- Policy-as-code or cloud guardrail frameworks
- Experience aligning technical controls with industry standards (CIS Benchmarks, NIST, CSA)
Preferred Qualifications- Experience supporting security programs in regulated industries
- Familiarity with cloud-scale governance constructs (management groups, folders, org policies)
- Experience integrating security controls into CI/CD pipelines
- Exposure to audit response, regulatory examinations, or risk assessments
- Experience automating governance processes, including exception handling, validation, and reporting
- Knowledge of security baseline lifecycle management and cloud security posture management (CSPM) tools
Skills & Attributes- Strong engineering mindset with a governance and risk-aware approach
- Ability to convert ambiguous requirements into precise, machine-enforceable controls
- Detail-oriented with a strong emphasis on traceability and defensibility
- Clear written communication skills across technical, audit, and executive audiences
- Comfortable working independently while collaborating across multiple teams
By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.
Contact: This job and many more are available through The Judge Group. Please apply with us today! 
Never miss an opportunity! Create an alert based on the job you applied for.