RemoteLeaf Logo
Log in Sign up

Cloud Security Engineer

3 weeks, 5 days ago
United States
Full-time
Senior
Cloud Engineer
DevOps and Infrastructure
AWS Azure CI/CD Docker GCP HashiCorp Vault Kubernetes Terraform
Apply Now
WorkWave

WorkWave

WorkWave provides field service management software solutions to automate business operations, improve efficiency, and enhance customer experiences through a suite of products like PestPac® and WorkWave Service™.

Professional Services
251-1K
Founded 1984
View All Jobs 18

Description

  • Lead deployment and optimization of AWS Control Tower, Security Hub, and AWS WAF for a secure multi-account strategy.
  • Own cloud security outcomes across AWS, Azure, and limited GCP, including landing zone standards, guardrails-as-code, detection coverage, and remediation automation.
  • Design and implement secure-by-default cloud patterns, hardened Terraform modules, reference architectures, and baseline configurations.
  • Collaborate with AppSec to secure EKS and ECS environments, including runtime protection, image scanning, and least-privilege orchestration.
  • Perform baseline assessments of the cloud environment and deliver prioritized recommendations to close security gaps.
  • Lead least-privilege IAM design and enforcement across AWS accounts and workloads.
  • Develop secure configuration standards, documentation, and operational procedures for cloud services.
  • Partner with security operations to centralize and improve cloud telemetry from tools such as CloudTrail, GuardDuty, and VPC Flow Logs.
  • Align cloud controls with internal standards and external compliance requirements such as ISO 27001 and SOC 2, including audit-ready evidence collection.
  • Manage secure access and configuration for third-party security vendor tools and participate in on-call incident response for cloud security issues.
  • Build and run the cloud vulnerability management program for AWS and Azure workloads, container images, and base AMIs.
  • Own CSPM and MDR onboarding, coverage validation, tuning, and remediation workflow improvements.
  • Design and enforce secure secrets, keys, and credential management patterns, including KMS governance and automated rotation.
  • Secure the CI/CD and software supply chain with policy-as-code, identity federation, artifact integrity controls, and developer-friendly guardrails.
  • Build cloud incident playbooks, run tabletop exercises, and ensure forensics readiness and break-glass access controls.
  • Establish minimum security baselines for Azure and GCP and help secure hybrid connectivity with data center environments.
  • Define cloud security metrics and use them to track coverage, misconfigurations, MTTR, control adoption, and vulnerability SLAs.
  • Mentor engineers and improve security literacy across platform and DevOps teams through reviews and enablement.

Requirements

  • 5–8+ years of experience in Information Security, including at least 3+ years focused on AWS Cloud Security.
  • Deep hands-on experience designing and securing AWS environments and core services such as IAM, VPC, S3, and KMS.
  • Experience with AWS security services such as GuardDuty, Inspector, and Config.
  • Strong hands-on experience with Terraform for cloud infrastructure management.
  • Proven experience securing containerized workloads in EKS or ECS.
  • Willingness to provide basic security support for an existing Azure environment; deep Azure expertise is not required.
  • Ability to assess a complex environment and create a practical roadmap to improve security.
  • Ability to work collaboratively with engineers and solve problems in a consultative, partnership-oriented way.
  • Ability to translate technical configurations into clear, repeatable documentation and procedures.
  • Strong drive to automate manual security tasks and reduce human error.
  • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
  • AWS Certified Security – Specialty, Azure security certification, or a related certification is highly desirable.

Benefits

  • $120,000 - $145,000 annual salary range.
  • Health and dental insurance.
  • 401(k) with company match.
  • Flexible Time Off policy or generous PTO plan, plus paid holidays.
  • Up to 4 weeks of paid bonding leave.
  • Tuition reimbursement.
  • Employee Assistance Program with free 24/7/365 counseling, financial counseling, legal guidance, and adoption assistance.
  • 24/7 virtual medical care through Teladoc.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Zensurance

Security Engineer (Remote First)

Zensurance 51-250 Insurance

Zensurance is hiring a remote-first Security Engineer in Toronto to support its company-wide information security program and strengthen risk, incident, and security operations across the business.

Canada Full-time Senior Security Engineer
$110k-$150k
Agile AWS CrowdStrike Cybersecurity
1 hour, 22 minutes ago
Nebius

Security Automation Engineer (SOAR)

Nebius 51-250 Internet Software & Services

Nebius is hiring a Security Automation Engineer to build and scale SOC automation across security operations, integrating SIEM, EDR, and other platforms while shaping SOAR capabilities in a greenfield environment.

Israel Full-time Mid Level Security Engineer Software Engineer
AWS Azure CrowdStrike GCP LLM Python REST API SIEM SOC Splunk
4 hours, 26 minutes ago
INflow Federal

DevSecOps Engineer

INflow Federal 51-250 Aerospace & Defense

INflow Federal is seeking a fully remote DevSecOps Engineer to support an enterprise case management solution for Department of Defense mission partners by securing and automating cloud-based CI/CD and infrastructure operations in AWS GovCloud.

United States Full-time Senior DevOps Engineer Security Engineer
Agile AWS Bash CI/CD CloudFormation Docker ELK Stack Git GitLab CI Helm Jenkins Kubernetes PowerShell Prometheus Python Terraform
5 hours, 14 minutes ago
INflow Federal

Cyber Security Architect

INflow Federal 51-250 Aerospace & Defense

INflow Federal is hiring a fully remote Cyber Security Architect to design and sustain secure enterprise architectures for a modernized Department of Defense information system supporting mission operations.

United States Full-time Senior Security Engineer
Agile DevSecOps ELK Stack OAuth Penetration Testing SAML Splunk
6 hours, 56 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers