Security Configuration Baseline Engineer- TX, NC, AZ

Security Configuration Baseline Engineer

Job#: 3026986

Location:

Las Colinas, TX;
Charlotte, NC;
Chandler, AZ (Hybrid Schedule)

Employment Type:

Contract

Pay Rate: $70.00/hr to $75.00/hr.

We are seeking a Security Configuration Baseline Engineer to support large‑scale, enterprise‑level security initiatives. In this role, you will consult on complex information security challenges and engineer codified security baselines to strengthen the organization’s cloud and platform security posture. This position is at the intersection of GRC, cloud security engineering, and automation, focusing on translating policies and standards into enforceable baseline‑as‑code.

This is an engineering‑focused role requiring technical expertise within a regulated environment.

• Consult on complex information security initiatives with broad organizational impact.
• Engineer, implement, and operationalize security configuration baselines across cloud and enterprise platforms.
• Convert standards, policies, and risk requirements into machine‑enforceable baseline‑as‑code.
• Support preventative controls, drift detection, exception handling, and governance automation.
• Collaborate with cross‑functional teams, including cloud engineering, GRC, audit, and architecture.
• Produce clear, structured, and audit‑ready documentation aligned with regulatory expectations.
• Review and analyze multi‑faceted security challenges requiring evaluation of numerous factors.

• 5+ years of experience in Information Security Analysis, cloud security, platform security, or security engineering.
• 5+ years of cloud technology experience.
• 3+ years of risk and control experience.
• 3 to 5 years of cloud security posture management experience.
• 2 to 4 years of Python development experience for scripting and automation.
• Hands‑on experience with security configuration baselines or hardening standards.
• Strong working knowledge of public cloud platforms (Azure and/or GCP preferred), policy‑as‑code frameworks, and Infrastructure as Code (e.g., Terraform).
• Experience mapping security controls to industry standards (CIS, NIST, ISO).

• Experience with a baseline‑as‑code program.
• Familiarity with cloud organization‑level controls (management groups, folders, org policies).
• Experience integrating security controls into CI/CD pipelines.
• Exposure to risk management, audit response, or regulatory examinations.
• Background in automating governance processes such as exception workflows and control validation.
• Experience in a regulated industry.
• Knowledge of industry standards and authoritative sources such as NIST, CSA, and CIS Benchmarks.

The pay range for this position is $70.00/hr to $75.00/hr benefits are available to eligible employees.

We are an equal‑opportunity employer and welcome applications from all qualified candidates regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.