Sr Cloud Security Engineer
Share
Job Location:
Monthly Salary:
Posted on:
30+ days ago
Vacancies:
1 Vacancy
Job Summary
Role: Sr Cloud Security Engineer
Location: - Bellevue WA Day 1 ONSITE
Job Description:
- The Cloud security SME is responsible for support cloud security initiatives by enhancing IaC security processes and fine-tuning native firewalls (e.g. AWS Security Groups Azure NSGs GCP Firewall Rules) to align with best practices and compliance requirements
Key Responsibilities:
IaC Security Scanning & Hardening:
- Integrate IaC security scanning tools (e.g. Checkov TFSec Snyk IaC Terraform Validator) into CI/CD pipelines.
- Analyze and remediate findings from IaC scans (Terraform CloudFormation ARM templates).
- Develop custom policies for IaC scanning tools based on organizational security standards.
Firewall Implementation & Tuning:
- Design and implement native firewall rules across cloud platforms (AWS Azure GCP).
- Perform rule optimization consolidation and risk-based tuning to reduce attack surfaces.
- Conduct regular reviews and audits of firewall configurations and access controls.
Risk Management & Compliance:
- Align firewall and IaC security policies with industry standards (NIST CIS ISO 27001).
- Support internal and external audits by providing documentation and evidence of controls.
Requirements:
- 7 years of experience in cloud security network security or DevSecOps.
- Hands-on experience with Terraform CloudFormation or other IaC tools.
- Deep understanding of cloud-native firewall services (AWS Azure GCP).
- Proficiency in security tools: Checkov Prisma Cloud Aqua Snyk etc.
- Certifications preferred: AWS/Azure/GCP Security Specialty CISSP CCSP Terraform Associate.
- Proficiency in Automation by using Powershell Bash and Python etc.
Key Skills
- Splunk
- IDS
- Network security
- Computer Networking
- Identity & Access Management
- PKI
- PCI
- NIST Standards
- Security System Experience
- Information Security
- Encryption
- Siem
