Principle Cloud Security Engineer

We are searching for a highly skilled and hands‑on Principal Cloud Security Engineer to join our growing security organization. In this role, you will operate at the intersection of cloud security, data platforms, and application engineering, helping secure mission‑critical workloads across Azure (primary), AWS, GCP, and Databricks environments. You’ll work directly with application, data, and security teams to integrate modern security controls, evaluate risks, shape architectural decisions, and build scalable protection mechanisms across the enterprise.

This is a true individual contributor role—you will influence, build, design, and secure systems without managing direct reports.

• Serve as a senior technical authority on cloud security across Azure, with additional exposure to AWS and GCP
• Design and implement cloud‑native security controls, guardrails, and detection mechanisms
• Evaluate cloud/data architectures, provide threat modeling, and recommend risk‑mitigating countermeasures
• Collaborate closely with development and application teams to embed security principles across the SDLC
• Drive secure Dev Ops/Dev Sec Ops  adoption, including automation, policies‑as‑code, and CI/CD integrations
• Support application security reviews, integration assessments, and vulnerability remediation strategies
• Ensure alignment with corporate IT standards, security guidelines, and enterprise compliance policies
• Contribute to cloud security frameworks, reference architectures, and long‑term security roadmaps
• Maintain strong awareness of emerging threats, vulnerabilities, and regulatory requirements

• 10+ years of relevant IT experience with a deep background in cloud and application security
• Strong hands‑on experience with Azure cloud security (required), plus AWS and/or GCP
• Expertise integrating security within cloud, data, and analytics platforms (including Databricks)
• Strong understanding of cloud‑native services, identity, networking, and security tooling
• Familiarity with NIST, OWASP, OSSTMM, and industry‑standard security frameworks
• Experience collaborating with software developers across the SDLC to define requirements and review architecture
• Proven experience with application security testing, risk assessment, and compensating controls
• Proficiency with secure Dev Ops practices and cloud automation
• Strong communication skills with the ability to translate risk into actionable guidance

• CISSP (Certified Information Systems Security Professional)
• CCSP (Certified Cloud Security Professional)
• Ability/willingness to pursue Mercedes‑Benz–mandated certifications