Public Cloud Security Engineer — Vulnerability & Exposure Management (MultiCloud)

Role Description

This role supports and secures clients public cloud environments as the firm continues expanding its Azure- and Google Cloud Platform (GCP)-based cloud ecosystem.

The Public Cloud Security Engineer serves as a senior technical leader responsible for identifying analyzing and remediating vulnerabilities misconfigurations and exposure risks across enterprise cloud platforms. The role focuses on reducing systemic risk through proactive remediation cloud security engineering and close collaboration with infrastructure automation and production services teams.

This position combines cloud engineering vulnerability management and operational security responsibilities within highly regulated enterprise environments ensuring cloud security controls scale effectively alongside business and platform growth.

Cloud Environment & Security Scope

Public cloud environments including:

• Microsoft Azure (primary platform)
• Google Cloud Platform (GCP) supporting data platform and AI workloads
• Enterprise production pre-production and development cloud environments
• Multi-region cloud architectures supporting global operations
• Shared responsibility security models across infrastructure platform and application layers

Cloud Security Focus Areas

• Cloud vulnerability management across compute storage identity networking and platform services
• Detection and remediation of:
  • insecure configurations
  • control drift
  • exposure risks
  • public access vulnerabilities
  • storage and account security gaps
• Root-cause analysis and prevention of recurring security issues
• Exposure management across cloud infrastructure and enterprise workloads
• Operational cloud security engineering within regulated environments

Security Platforms & Tooling

• Vulnerability scanning and posture management platforms including Qualys and compliance tooling
• SIEM and centralized logging integrations where required
• Cloud-native security tooling and monitoring solutions
• Infrastructure and security automation via APIs and cloud-native tooling
• Centralized vulnerability reporting and remediation tracking workflows

Infrastructure & Automation

• Infrastructure as Code (IaC) and secure cloud automation practices
• Terraform and cloud-native tooling for remediation and secure configuration management
• Security integrations within infrastructure automation and operational workflows
• Python-based scripting and automation for remediation validation and operational support
• Collaboration with infrastructure automation and cloud engineering teams

Responsibilities

• Lead investigation and remediation of cloud vulnerabilities and exposure risks
• Detect analyze and resolve cloud security issues across Azure and GCP environments
• Engineer long-term remediation strategies that prevent recurrence of vulnerabilities
• Support operational cloud security initiatives in enterprise production environments
• Collaborate with production services cloud engineering and infrastructure automation teams
• Support security tooling onboarding operation and continuous improvement
• Contribute to incident response mitigation and post-incident remediation activities
• Maintain operational readiness and support activities requiring overlap with US-based teams
• Mentor junior engineers and promote operational security engineering best practices

Reliability Operations & Risk

• Support stable and scalable operation of cloud security platforms
• Participate in enterprise operational support and remediation workflows
• Maintain audit-ready operational processes and remediation tracking
• Contribute to enterprise risk reduction and cloud security governance initiatives
• Operate effectively within regulated financial services environments

Required Qualifications

• Bachelors degree in Computer Science Information Systems or equivalent engineering experience
• Senior-level experience supporting cloud security engineering and vulnerability remediation
• Strong hands-on experience with Microsoft Azure and Google Cloud Platform (GCP)
• Deep experience in vulnerability management exposure reduction and remediation engineering
• Strong understanding of enterprise cloud infrastructure and cloud security principles
• Proficiency in Python for automation and operational tooling
• Experience supporting enterprise production environments in regulated industries
• Strong troubleshooting root-cause analysis and remediation skills
• Ability to work independently within enterprise operational environments

Preferred Qualifications

• Financial services industry experience
• Experience with Qualys or similar vulnerability management platforms
• Familiarity with cloud posture management and compliance tooling
• Experience integrating cloud security tooling into operational workflows
• Exposure to DevSecOps and cloud infrastructure automation
• Experience supporting US-based operational teams with timezone overlap
• Experience with cloud security operations in large-scale enterprise environments

Required Experience:

Staff IC