Locke and McCloud is seeking a Senior Cloud Security Engineer to elevate and secure a complex multi-cloud environment. The ideal candidate will have hands-on cloud security architecture, automation, and modern security engineering practices. This is a fully remote position.
Key Highlights
Technical Skills Required
Benefits & Perks
Job Description
Senior Cloud Security Engineer (Multi-Cloud)
Compensation: $100,000 - $160,000
Fully Remote
We're partnered with a fast-growing organization seeking a Senior Cloud Security Engineer to elevate and secure a complex multi-cloud environment (Azure, AWS, and/or GCP). This position is ideal for an engineer who excels in hands-on cloud security architecture, automation, and modern security engineering practices.
Key Responsibilities:
- Own and improve cloud security posture across Azure, AWS, and/or GCP, enforcing guardrails aligned to CIS Benchmarks and NIST CSF 2.0.
- Operate and optimize cloud security/CNAPP tooling, driving remediation with stakeholders.
- Review IaC and policy-as-code for security issues and advise on secure CI/CD practices.
- Design identity, secrets management, key management, and least-privilege access models.
- Architect secure cloud networks including VPC/VNet design, segmentation, and private connectivity.
- Centralize and harden cloud logging/telemetry and integrate with SIEM/SOAR.
- Define data security controls across cloud storage, databases, and analytics services.
- Automate cloud security workflows using scripting, APIs, serverless functions, and automation pipelines.
- Partner with Cloud/IT/SecOps teams on patching, hardened images, vulnerability management, and detection engineering.
- Assess controls against CIS Benchmarks and NIST CSF, publishing metrics and risk treatment plans.
- Support incident response, cloud investigations, and forensics activities as needed.
- Research emerging threats and new cloud security technologies to enhance overall maturity.
Qualifications:
- 10+ years in Information Security, including 5+ years of hands-on cloud security engineering.
- Strong multi-cloud experience (Azure and AWS required; GCP a plus).
- Bachelor’s degree required; advanced degree preferred.
- 3 or more of the following certifications -(CISSP, CCSP, GIAC, CKS, CCAK, Security+.)
- Deep knowledge of IAM, encryption, secrets management, federated identity, and modern access controls.
- Proficient in IaC security, CI/CD security, Kubernetes, and API security.
- Strong understanding of cloud networking, logging, SIEM/SOAR integrations, and alert tuning.
- Skilled with Python and/or PowerShell, cloud CLIs/SDKs, and automation workflows.
- Clear communicator capable of producing standards, runbooks, diagrams, and executive-level reporting.
- Experience participating in 24×7 incident response rotations.
Interviews are scheduled to take place next week so if you’re interested in hearing more about this and other roles, then please get in touch asap to discuss further at +1 480-658-0991 or send your Resume to b.maher@locke-mccloud.com