Senior Cloud Security Consultant & Engineer

Security Consultant, Cloud Security Engineer

A boutique cybersecurity consultancy serving SME clients across healthcare, legal, technology, media, fintech, and consumer sectors is hiring a hybrid engagement leader and cloud security consultant. You will own a portfolio of client relationships end to end, acting as the technical go-to and primary point of contact: running cloud security assessments, leading incident response, and translating security work for both engineers and non-technical stakeholders. This is a build-and-figure-it-out role on a small, fast-moving team, with wide latitude to use AI and automation to deliver better, faster client outcomes.

Compensation: $140,000 to $150,000

Logistics: Remote in the US

Here's what you'll be doing:

• Serve as technical lead and primary client contact across roughly five concurrent clients, weighted toward smaller clients and those with MSP or technical IT teams on the other side
• Run standard technical assessments: cloud environment reviews, OSINT gathering, and vulnerability assessments
• Develop and implement secure cloud architecture, primarily in AWS
• Build and run automated vulnerability management programs
• Implement logging and monitoring solutions for clients, and lead monitoring, detection, and response across endpoints and identity

Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Own IAM work including access reviews, configuration, and response to identity anomalies
• Scope penetration tests (network and host-based), review ports, and translate findings; hands-on testing is outsourced
• Act as the technical escalation point on incident response across all clients, not just your own portfolio
• Build scripting and process improvements that automate delivery work and client communications
• Lead threat modeling exercises and create clear documentation that formalizes security processes
• Communicate security posture at a strategic level, framing technical work inside the client's broader security program
• Provide first-pass sales support, including occasional demos and surfacing service expansion opportunities

And what you need to have:

• 5 years of experience in secure cloud engineering with AWS (GCP or Azure a plus)
• Strong understanding of cloud networking, both traditional and software-defined, and network security best practices

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Strong Linux CLI experience and general scripting ability in Python, BASH, or Go
• Vulnerability assessment and management experience
• Working knowledge of IAM concepts and identity monitoring
• Experience with log management and monitoring solutions such as Splunk, Sumo Logic, or ELK
• Familiarity with MDR and endpoint and identity monitoring solutions
• Knowledge of the CI/CD pipeline and how to inject security at each stage
• Fluent daily use of AI tooling such as Claude Code, OpenAI Codex, or GitHub Copilot, and the drive to use it more
• Exposure to penetration testing sufficient to scope and interpret engagements (you do not need to be a working pen tester)
• Excellent client-facing communication, with the ability to move between technical and non-technical audiences and manage multiple client relationships and deadlines at once
• High tolerance for ambiguity and a self-directed, figure-it-out approach in a small startup environment
• Terraform or other IaC exposure (Ansible, Puppet, Chef) is a plus. Kubernetes and container experience is not required
• Prior consulting experience is a plus; strong in-house security candidates with the right client instincts are equally welcome