Cloud Security Engineer (GCP, Azure, AWS)

TL;DR

Cloud Security Engineer (GCP, Azure, AWS): Designing, implementing, and securing complex cloud environments for clients with an accent on SaaS security, network security, and compliance. Focus on optimizing security architectures, performing penetration testing, and leading incident response initiatives.

Location: Remote from the United States

Company

hirify.global is a product company focused on creating better work experiences for people everywhere.

What you will do

• Design, implement, and optimize cloud security architectures to enhance, build, monitor, and address security alerts.
• Perform penetration testing activities on Web Applications, Cloud Environments, and Mobile Applications.
• Configure, manage, and troubleshoot cloud-native firewalls and Web Application Firewalls (WAFs).
• Lead and contribute to compliance initiatives, ensuring adherence to industry regulations and frameworks such as GDPR, SOC 2, ISO 27001, CMMC, and CSA STAR.
• Act as a trusted advisor to clients, communicating complex technical security concepts to diverse stakeholders.
• Support incident response activities by providing expert analysis and remediation strategies, and manage comprehensive vulnerability and penetration testing programs.

Requirements

• 10+ years of progressive experience in cybersecurity, with at least 4+ years focused on cloud security engineering.
• Deep hands-on experience with Google Cloud Platform (GCP) security services and practical experience with Microsoft Azure and Amazon Web Services (AWS) security services.
• Extensive experience with network security principles, implementation in cloud environments, firewall management, and Web Application Firewalls (WAFs).
• Hands-on experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel, Google Chronicle Security Operations, Datadog) including log ingestion and rule creation.
• Strong understanding of cloud identity and access management (IAM) principles and best practices across multi-cloud, and solid knowledge of compliance frameworks.
• CISSP certification required.

Nice to have

• Relevant industry certifications (e.g., Google Cloud Professional Cloud Security Engineer, Azure Security Engineer Associate, AWS Certified Security – Specialty, CCSP).
• Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation, ARM templates) for security automation.
• Scripting skills (e.g., Python, PowerShell, Bash).
• Experience with container security (Docker, Kubernetes) and knowledge of DevSecOps principles and practices.

Culture & Benefits

• Competitive salaries, medical, dental, and vision coverage, disability coverage, employer-paid life insurance, and mental health resources.
• 401(k) plan and a fully paid parental leave program.
• Generous PTO, flexible work schedules, and remote work opportunities.
• Paid company holidays and hirify.global Quiet Fridays (no non-essential internal meetings).
• Casual dress work environment.