Senior Cloud Security Engineer - Client-Facing Role

About Workstreet

At Workstreet, we're on an exciting journey to help businesses scale securely by designing and implementing cutting-edge security and compliance programs. As a fast-growing startup, we specialize in a wide range of frameworks, including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP---empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one.

We are seeking a Cloud Security Engineer to help clients design, implement, and maintain security controls that meet compliance and security requirements. This role is ideal for professionals with hands-on experience in cloud security engineering, compliance frameworks, and cloud-based security best practices. You’ll work closely with clients and internal teams to strengthen their cloud security posture and automate security operations across AWS, GCP, and Azure environments.

• Implement Cloud Security Controls: Apply and maintain security best practices across AWS, GCP, and Azure to ensure alignment with compliance and regulatory standards.
• Assess Cloud Environments: Evaluate client infrastructures to identify security risks, misconfigurations, and vulnerabilities, providing targeted remediation recommendations.
• Deploy and Manage Security Tools: Configure and maintain SIEM, IDS/IPS, vulnerability management, and identity solutions to strengthen cloud security posture.
• Support Compliance Initiatives: Contribute to SOC 2, ISO 27001, and HIPAA efforts through control implementation, testing, and evidence validation.
• Automate Security Operations: Develop and manage infrastructure-as-code (IaC) scripts to streamline and enforce consistent cloud security controls.
• Conduct Cloud Security Reviews: Perform architecture assessments and configuration reviews to ensure secure design and adherence to best practices.
• Collaborate with Engineering Teams: Integrate security practices into CI/CD pipelines and development workflows to prevent vulnerabilities early in the lifecycle.
• Assist in Incident Response: Investigate and remediate cloud-related security incidents to minimize exposure and restore integrity.
• Communicate with Clients: Engage directly with clients via multiple channels to address security inquiries and deliver actionable guidance.

Client Relationship Management (Primary Focus)

• Own the Client Experience: Act as the primary point of contact for a portfolio of cloud security clients, building strong, trust-based relationships and ensuring consistent, high-quality engagement throughout all phases of service delivery.

Interested in remote work opportunities in Devops? Discover Devops Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Guide Clients Through Cloud Security Initiatives: Lead clients through security improvement efforts — from initial assessments to implementation and ongoing optimization — with clear communication, defined milestones, and proactive support.
• Collaborate Closely with Client Teams: Partner with engineering, DevOps, and IT stakeholders to understand their cloud environments, address security gaps, and implement scalable, compliant solutions tailored to their infrastructure.
• Translate Security into Business Value: Communicate technical findings, risks, and recommendations in a clear, actionable manner that aligns with client priorities, compliance requirements, and operational goals.
• Manage Client Communications Proactively: Provide regular updates on project status, risks, and remediation progress, ensuring transparency and alignment across all stakeholders.
• Handle Escalations with Confidence: Address client concerns, incidents, and complex challenges with urgency and professionalism, delivering thoughtful, solution-oriented outcomes that maintain trust.
• Serve as a Trusted Cloud Security Advisor: Offer ongoing guidance on cloud security best practices, emerging threats, and compliance frameworks (e.g., SOC 2, ISO 27001, HIPAA), helping clients strengthen their long-term security posture.
• Drive Long-Term Client Success: Identify opportunities to enhance client environments through improved security architecture, automation, and process maturity, contributing to sustained value and partnership growth.

• Hands-on experience securing AWS, GCP, or Azure environments.
• Strong understanding of cloud security principles, IAM, network security, and compliance controls.
• Proficiency in security automation using tools like Terraform, AWS CloudFormation, Python, or Bash.
• Working knowledge of compliance frameworks such as SOC 2, ISO 27001, GDPR, or HIPAA.
• Experience with Microsoft security and identity ecosystem, including Azure, Microsoft Entra (Azure AD), EDR, MDM, and VDI environments.
• Excellent troubleshooting and problem-solving abilities.
• Strong written and verbal communication skills in English.
• Ability to manage multiple client projects and interact directly with US-based clients.

• Experience with SIEM, IDS/IPS, vulnerability management, and log analysis tools.

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Relevant cloud security certifications (e.g., AWS Certified Security – Specialty, GCP Security Engineer, CISSP, CISM, or CISA).
• Familiarity with container security (Docker, Kubernetes) and DevSecOps practices.
• Understanding of Zero Trust and identity-centric security models.
• Prior experience working in a fast-paced startup or managed security environment.

• Career Development: Clear path with mentorship and training opportunities
• Technical Training: Comprehensive onboarding on security and compliance frameworks
• Competitive Compensation: A competitive base salary with regular performance reviews linked to merit-based appraisals and bonus opportunities.
• Growth Opportunity: Early-stage company with significant room for career advancement.
• Remote-First Culture: Flexibility to work from anywhere while collaborating with a global team.

• Reliable high-speed internet connection.
• Quiet, professional home office setup.
• Must be amenable to working US Eastern Time zone hours.
• Fluency in written and verbal English communication skills.

Apply here with this Link: https://ats.rippling.com/workstreet/jobs/93e1f763-d883-4009-b985-3162b490a164