More jobs:
Cloud Security Engineer; GCP
Job in
Charlotte, Mecklenburg County, North Carolina, 28245, USA
Listed on 2026-07-07
Listing for:
Infosoft, Inc.
Full Time
position Listed on 2026-07-07
Job specializations:
-
IT/Tech
Cybersecurity
Job Description & How to Apply Below
We are looking for a Cloud
Security Engineer
- The Security Configuration Baseline Engineer is responsible for designing
, engineering, and operationalizing security configuration
baselines across enterprise technology platforms. - This role sits at the intersection of GRC
, cloud security architecture, and automation, translating policy requirements and industry standards into codified, enforceable, and auditable security baselines
. - The role focuses on baseline engineering
—not advisory architecture—with accountability for converting standards, policies, and risk requirements into baseline as code, enabling preventative controls, drift detection, exception workflows, and enterprise-scale governance via the Cloud Security Benchmark (CSB) system of record.
- 5 plus years of experience in cloud security
, platform security
, or security engineering - Hands-on experience with security configuration
baselines or hardening standards. - Experience mapping security controls to industry standards (
CIS, NIST, ISO
) - Ability to produce clear, structured, audit-ready documentation
- Experience operating in large, regulated enterprise environments
- Cloud technology exp 5 plus years
- Risk and Control 3 plus years
- Cloud security posture management 3 to 5 years
- Development (software)
Python – Writing scripts 2 to 4 years - Preferred - Regulated industry:
- Industry standards and authoritative sources (ie NIST, CSA, CIS benchmark )
- Azure and Google Cloud
- Security Baseline
- Public cloud platforms (Azure and/or GCP preferred)
- Policy as code or guardrail frameworks
- Infrastructure as Code (e.g., Terraform)
- Experience with a baseline as code program
- Familiarity with cloud organization level controls (management groups, folders, org policies)
- Experience with CI/CD integration of security controls
- Exposure to risk management, audit response, or regulatory examinations
- Background in automating governance processes (exception workflows, control validation, reporting)
- Engineering mindset with strong governance discipline
- Comfortable translating ambiguity into explicit, machine-enforceable requirements
- Detail-oriented with a strong emphasis on traceability and defensibility
- Strong written communication skills for executive, audit, and technical audiences
- Able to work independently while collaborating across multiple enterprise teams.
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×