Sr. Cloud Security Engineer

Job Overview

The Sr. Cloud Security Engineer will report to the AVP of Cloud / Network Security and will be an involved member of the Sec Arc Engineering team. The individual fulfilling this role must display an in-depth understanding of new trends and technologies related to Cloud, security, networking, and compliance and contribute to the firm’s IT security strategy and roadmap.

• Responsible for the thorough documentation of implementations via technical documentation and run‑books.
• Responsible for input and feedback on security architectures.
• Apply adept understanding and experience with systems automation platforms and technologies.
• Partake in efforts that shape the organization’s security policies and standards for use in cloud environments.
• Direct and influence multi‑disciplinary teams in implementing and operating Cyber Security controls.
• Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements.
• Execute security architectures for cloud, hybrid/cloud systems.
• Automate security controls, data, and processes to provide improved metrics and operational support.
• Employ cloud‑based APIs when suitable to write network/system level tools for safeguarding cloud environments.
• Stay abreast of emerging security threats, vulnerabilities, and controls.
• Spot and execute new security technologies and best practices into the company’s Cloud offerings.
• Evaluate security posture, create reports, and make recommendations as needed.
• Ensure compliance with organizational security rules and standards.
• Coordinate response to information security incidents.
• Member of on‑call rotation.
• Perform other job‑related duties or special projects as assigned.
• Create, update, and maintain security architecture standards and best practices.
• Conduct authorized cloud security assessments on a scheduled basis and report gaps in a meaningful way with potential solutions.

• 5+ years of experience conducting security assessments on AWS and Azure/Office 365.
• 5+ years of hands‑on experience with Linux and Windows operating systems and cloud provider ecosystems like Amazon AWS.
• 5+ years of practical knowledge of AWS and Azure foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies.
• 5+ years of experience designing and deploying microservices architectures (AWS EKS, Docker, etc.).
• 2+ years of experience with the AWS Well‑Architected framework; experience with framework reviews and adoption.

• Extensive experience architecting, designing, and programming applications with high‑level programming languages such as C++, C#, Java, Python, Visual Basic.
• Familiarity with AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, Cloud Front, Cloud Formation, Cloud Watch, Route
  53, etc.).
• Demonstrated understanding of IAM principles, including role‑based access control, SSO, least‑privilege access, and user lifecycle management (provisioning, deprovisioning, governance).
• Understanding of complex enterprise environments and current technology areas like cloud and mobility.
• Excellent analytical and troubleshooting skills; capable of constantly monitoring systems to identify threats and vulnerabilities, executing security architecture, and ensuring there are no external threats.
• Strong understanding of cloud architectures, design, and workload transition challenges.

Pay Range: $ – $. Actual base salary varies based on factors including relevant skill, prior experience, education, internal peer salary, performance, and geographic location.

Benefits include 401(k) matching, health benefits, employee stock options, paid time off, volunteer time off, and a competitive total rewards package.

Principals only. EOE.