RemoteLeaf Logo
Log in Sign up

Cloud Security Engineer

1 month, 2 weeks ago
United States
Full-time
Senior
Cloud Engineer
DevOps and Infrastructure
AWS Azure CI/CD Docker GCP HashiCorp Vault Kubernetes Terraform
Apply Now
WorkWave

WorkWave

WorkWave provides field service management software solutions to automate business operations, improve efficiency, and enhance customer experiences through a suite of products like PestPac® and WorkWave Service™.

Professional Services
251-1K
Founded 1984
View All Jobs 16

Description

  • Lead deployment and optimization of AWS Control Tower, Security Hub, and AWS WAF for a secure multi-account strategy.
  • Own cloud security outcomes across AWS, Azure, and limited GCP, including landing zone standards, guardrails-as-code, detection coverage, and remediation automation.
  • Design and implement secure-by-default cloud patterns, hardened Terraform modules, reference architectures, and baseline configurations.
  • Collaborate with AppSec to secure EKS and ECS environments, including runtime protection, image scanning, and least-privilege orchestration.
  • Perform baseline assessments of the cloud environment and deliver prioritized recommendations to close security gaps.
  • Lead least-privilege IAM design and enforcement across AWS accounts and workloads.
  • Develop secure configuration standards, documentation, and operational procedures for cloud services.
  • Partner with security operations to centralize and improve cloud telemetry from tools such as CloudTrail, GuardDuty, and VPC Flow Logs.
  • Align cloud controls with internal standards and external compliance requirements such as ISO 27001 and SOC 2, including audit-ready evidence collection.
  • Manage secure access and configuration for third-party security vendor tools and participate in on-call incident response for cloud security issues.
  • Build and run the cloud vulnerability management program for AWS and Azure workloads, container images, and base AMIs.
  • Own CSPM and MDR onboarding, coverage validation, tuning, and remediation workflow improvements.
  • Design and enforce secure secrets, keys, and credential management patterns, including KMS governance and automated rotation.
  • Secure the CI/CD and software supply chain with policy-as-code, identity federation, artifact integrity controls, and developer-friendly guardrails.
  • Build cloud incident playbooks, run tabletop exercises, and ensure forensics readiness and break-glass access controls.
  • Establish minimum security baselines for Azure and GCP and help secure hybrid connectivity with data center environments.
  • Define cloud security metrics and use them to track coverage, misconfigurations, MTTR, control adoption, and vulnerability SLAs.
  • Mentor engineers and improve security literacy across platform and DevOps teams through reviews and enablement.

Requirements

  • 5–8+ years of experience in Information Security, including at least 3+ years focused on AWS Cloud Security.
  • Deep hands-on experience designing and securing AWS environments and core services such as IAM, VPC, S3, and KMS.
  • Experience with AWS security services such as GuardDuty, Inspector, and Config.
  • Strong hands-on experience with Terraform for cloud infrastructure management.
  • Proven experience securing containerized workloads in EKS or ECS.
  • Willingness to provide basic security support for an existing Azure environment; deep Azure expertise is not required.
  • Ability to assess a complex environment and create a practical roadmap to improve security.
  • Ability to work collaboratively with engineers and solve problems in a consultative, partnership-oriented way.
  • Ability to translate technical configurations into clear, repeatable documentation and procedures.
  • Strong drive to automate manual security tasks and reduce human error.
  • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
  • AWS Certified Security – Specialty, Azure security certification, or a related certification is highly desirable.

Benefits

  • $120,000 - $145,000 annual salary range.
  • Health and dental insurance.
  • 401(k) with company match.
  • Flexible Time Off policy or generous PTO plan, plus paid holidays.
  • Up to 4 weeks of paid bonding leave.
  • Tuition reimbursement.
  • Employee Assistance Program with free 24/7/365 counseling, financial counseling, legal guidance, and adoption assistance.
  • 24/7 virtual medical care through Teladoc.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Centorrino Technologies

SAP Security Specialist

Centorrino Technologies 51-250 Internet Software & Services

Centorrino Technologies is seeking a 12-month fixed-term SAP Security Specialist in Melbourne or Hobart to secure and govern a modern, hybrid SAP landscape while supporting enterprise transformation and access governance initiatives.

Australia Contract Senior Security Engineer
SAML
2 hours, 20 minutes ago
TASQ Staffing Solutions

Lead Dev Ops Engineer | Remote

TASQ Staffing Solutions 11-50 Professional Services

Lead Azure DevOps Engineer for a consulting and client-facing role focused on implementing and supporting Azure-based DevOps solutions, cloud workloads, and technical project delivery for Microsoft-backed cloud work.

Philippines Full-time Lead Cloud Engineer DevOps Engineer
Ansible AWS Azure Bamboo Bash Chef CI/CD Docker GCP Groovy Jenkins Kubernetes Linux PowerShell Puppet Python Terraform
3 hours, 1 minute ago
Parachute Health

IT & Security Engineer (Contract)

Parachute Health 51-250 Health Care Providers & Services

Parachute Health is hiring a contractor for its IT & Security team to support secure, compliant, and efficient healthcare technology operations across identity, endpoint, network, and cloud security.

United States Contract Entry Level Security Engineer
AWS Bash CrowdStrike DHCP DNS GCP Git GitHub HIPAA Linux macOS OAuth PostgreSQL PowerShell Python SAML Splunk SQL TLS
7 hours, 46 minutes ago
MetroStar

Sr. Solutions Architect (DevSecOps) II (6444)

MetroStar 251-1K IT Services

MetroStar is seeking a Sr. Solutions Architect (DevSecOps) II to lead secure platform and cloud solution efforts for containerized, microservices-based environments while ensuring compliance, continuous monitoring, and incident response readiness.

United States Full-time Senior Platform Engineer Security Engineer
$166k-$202k
AWS CI/CD Cybersecurity DevSecOps Jenkins Kubernetes Microservices OpenShift SonarQube Splunk
9 hours, 12 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers