- Company Name
- TECHEAD
- Job Title
- Cloud Security Engineer
- Job Description
-
**Job Title:** Cloud Security Engineer
**Role Summary:**
Design, build, and harden secure cloud environments for AI‑driven defense applications. Act as the bridge between engineering and security operations, embedding security controls from inception through deployment and ongoing operations.
**Expectations:**
- 3‑5+ years of cybersecurity experience, including 2+ years dedicated to cloud security (AWS, Azure, or GCP).
- Ability to obtain a U.S. security clearance.
- Proven track record designing and implementing secure‑by‑default cloud architectures in regulated or high‑security settings.
**Key Responsibilities:**
- Architect and deploy resilient, scalable cloud infrastructure aligned with NIST, CIS, and Zero‑Trust principles.
- Implement Infrastructure‑as‑Code (Terraform, CloudFormation, Ansible) and integrate SAST/DAST tools into CI/CD pipelines.
- Build and maintain logging, alerting, and monitoring solutions using SIEM (e.g., Splunk, Elastic) and CSPM tools (e.g., Wiz, Prisma).
- Lead incident response, cloud forensics, and vulnerability management for container, serverless, and other cloud‑native workloads.
- Design and enforce IAM policies, MFA, and least‑privilege access models.
- Conduct security assessments, penetration testing, and compliance audits (FedRAMP, CMMC, NIST 800‑53).
**Required Skills:**
- Strong scripting/programming (Python, Bash, PowerShell).
- Hands‑on experience with Terraform, CloudFormation, Ansible.
- Deep knowledge of networking fundamentals (TCP/IP, DNS, VPN, VPC/Subnet).
- Familiarity with cloud security services and tools (e.g., IAM, CSPM, SIEM).
- Excellent problem‑solving, communication, and collaboration abilities.
**Required Education & Certifications:**
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field (or equivalent experience).
- Preferred: CCSP, CISSP, or other cloud security certifications.