Cloud Security Engineer (Secret Clearance)
Deloitte · Baltimore, MD · 2 days ago
HybridEngineering$108k–$188k/yrFull-time
Work You'll Do
- Assess cloud environments across AWS, GCP, and Azure to identify security risks, control gaps, and configuration issues.
- Design, implement, and improve cloud security controls, including identity and access management, network security, encryption, logging, and monitoring.
- Support cloud security architecture reviews for new and existing solutions and provide recommendations aligned to security and compliance requirements.
- Investigate cloud security events and findings, analyze root causes, and support remediation activities with engineering and operations teams.
- Develop and maintain technical documentation, standards, baselines, and reports related to cloud security controls and cloud risk management.
Qualifications
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Engineering, or a similar technical field.
- Active Secret Clearance.
- Local to the DMV area and able to work onsite up to 5 days a week.
- Ability to travel 20%, on average, based on the work you do and the clients and industries/sectors you serve.
- 2+ years' experience within the following: Supporting cloud security, cloud engineering, or cloud infrastructure.
- Experience implementing or assessing security controls in Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure.
- Experience with cloud identity and access management, network security, encryption, logging, monitoring, and configuration management.
- Experience using cloud-native security tools, security posture management tools, or infrastructure as code tools.
- Experience with security frameworks and benchmarks such as National Institute of Standards and Technology (NIST), Center for Internet Security (CIS), or International Organization for Standardization (ISO).
- Experience with scripting or automation using Python, PowerShell, Bash, or Terraform.
- Experience with container security, Kubernetes, or DevSecOps practices.
- Industry certifications such as AWS Certified Security - Specialty, Microsoft Azure Security Engineer Associate, Google Professional Cloud Security Engineer, or Certified Information Systems Security Professional (CISSP).