Senior Cloud and infra security engineer

Overview

Hybrid
Depends on Experience
Contract - W2
Contract - Independent
Contract - 12 Month(s)

Skills

Amazon Web Services
Docker
DevOps
Cloud Computing
Terraform

Job Details

Job Title

Senior Cloud & Infrastructure Security Engineer

Role Summary

We are seeking a Senior Cloud & Infrastructure Security Engineer to design, implement, and maintain security controls across our cloud platforms and on-prem infrastructure. This role partners closely with cloud engineering, DevOps, IT, and risk teams to ensure secure, scalable, and compliant systems while enabling rapid innovation.

Key Responsibilities

Cloud & Infrastructure Security

  • Design and implement security architectures for AWS / Azure / Google Cloud Platform environments

  • Secure cloud networking (VPC/VNet design, firewalls, private endpoints, segmentation)

  • Implement and manage IAM, least privilege access, and identity federation

  • Harden compute, container, and Kubernetes platforms

  • Secure hybrid and multi-cloud environments

Security Engineering & Automation

  • Build and maintain Infrastructure as Code (Terraform, ARM, CloudFormation) with security guardrails

  • Automate security controls and monitoring using CI/CD pipelines

  • Integrate security tools into DevSecOps workflows

  • Develop custom security scripts and tooling (Python, Bash, PowerShell)

Monitoring, Detection & Response

  • Implement cloud-native security services (e.g., GuardDuty, Defender, Security Command Center)

  • Integrate logs and alerts into SIEM/SOAR platforms

  • Lead cloud-related incident response and post-incident remediation

  • Conduct threat modeling and security architecture reviews

Risk, Compliance & Governance

  • Ensure compliance with frameworks such as ISO 27001, SOC 2, NIST, CIS Benchmarks

  • Support audits and risk assessments

  • Define and enforce security policies, standards, and best practices

  • Perform vulnerability assessments and configuration reviews

Collaboration & Leadership

  • Act as a security advisor to engineering and platform teams

  • Mentor junior security engineers

  • Contribute to security roadmap and strategic initiatives

  • Communicate risks and solutions to technical and non-technical stakeholders

Required Qualifications

  • 6+ years of experience in cloud, infrastructure, or security engineering

  • Deep hands-on experience with AWS, Azure, or Google Cloud Platform (multi-cloud preferred)

  • Strong understanding of:

    • Networking (TCP/IP, DNS, routing, VPNs)

    • Identity & access management

    • Linux and/or Windows systems

  • Experience with containers and orchestration (Docker, Kubernetes)

  • Proficiency with IaC tools (Terraform preferred)

  • Experience integrating security into CI/CD pipelines

Preferred Qualifications

  • Cloud security certifications (e.g., AWS Security Specialty, Azure Security Engineer, CCSP)

  • Experience with zero trust architectures

  • Knowledge of EDR, CSPM, CWPP, and CASB tools

  • Background in incident response or threat hunting

  • Experience in regulated industries (finance, healthcare, SaaS)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.