Information System Security Officer responsible for cybersecurity assessments and security policy implementation. Working with a diverse team on telecommunication systems to achieve Authority to Operate (ATO).
About the role
- Senior Cloud Security Engineer at Semperis focusing on preventative security and cloud architecture. Collaborating with teams to enhance security around cloud environments and regulatory requirements.
Responsibilities
- Design, build, and maintain secure cloud foundations across Azure, AWS and GCP (with deep expertise in AWS preferred).
- Own and evolve Cloud Security Posture Management (CSPM) capabilities, including policies, guardrails, and automated remediation.
- Engineer and maintain cloud network security controls, including network segmentation and isolation, cloud-native firewalls and security groups, Application Gateway / WAF configurations, and secure ingress and egress patterns.
- Define and enforce security best practices for Kubernetes environments (AKS/EKS), including RBAC, network policies, workload isolation, and cluster hardening.
- Partner with engineering teams to perform security architecture reviews and provide guidance for new services, platforms, and major changes, helping engineering teams design secure solutions that meet security best practices and compliance requirements.
- Engineer and maintain identity and access security controls for cloud and production environments, including least privilege, workload identity, service principals, and conditional access.
- Contribute to FedRAMP and regulated environment readiness, including control implementation, evidence automation, and cross-team coordination.
- Build and operate secure cloud automation using Infrastructure as Code (Terraform, Bicep), CI/CD integrations, and policy-as-code.
- Apply a security lens to FinOps, defining guardrails that balance cost optimization with security and compliance.
- Develop tooling, automation, and self-service workflows that reduce manual effort and improve consistency across security programs.
- Act as a senior technical partner to engineering, IT, and compliance teams, contributing to long-term cloud security strategy and standards.
- Mentor junior engineers and contribute to raising the overall security maturity of the organization.
Requirements
- 6+ years of experience in cloud security, security engineering, or cloud platform engineering roles.
- Strong hands-on experience securing cloud-native environments (Azure preferred).
- Hands-on experience securing Kubernetes environments (AKS/EKS) is a strong plus.
- Proven experience with cloud network security, including firewalls, WAFs, network segmentation, and secure connectivity patterns.
- Strong understanding of cloud security architecture, including shared responsibility models, secure service design, and defense-in-depth.
- Experience with preventative security controls, including CSPM, policy enforcement, and secure cloud baselines.
- Solid experience with identity and access management in cloud environments (RBAC, workload identity, service principals).
- Experience contributing to or supporting compliance programs such as FedRAMP, SOC 2, ISO 27001, or NIST frameworks.
- Strong Infrastructure-as-Code skills (Terraform, Bicep, CloudFormation).
- Ability to script or automate using Python, PowerShell, or similar languages.
- Familiarity with CI/CD pipelines and DevSecOps practices.
- Ability to operate independently, own complex problem spaces, and deliver practical, scalable solutions.
- Strong communication skills and comfort providing architecture-level guidance to engineering teams.
Benefits
- health insurance
- paid time off
- flexible work arrangements
- professional development opportunities
- hybrid work model
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Target Security Specialist responsible for ensuring guest safety and preventing theft in retail. Engaging with customers to provide a friendly shopping experience while managing security measures.
Security Engineer implementing cloud - native security measures for fintech firm, collaborating closely with the CISO to enhance client trust through robust security infrastructure.
Cyber Security Compliance & Risk Analyst providing guidance and compliance support for security policies. Identifying risks, ensuring remediation, and collaborating across departments to enhance security effectiveness.
Senior Cybersecurity GRC Associate managing information security governance, risk assessments, and compliance at Corient. Join a team dedicated to supporting high - net - worth individuals in wealth preservation.
Cybersecurity Specialist at Telefónica Tech supporting user access within minimal privilege principles. Ensuring compliance and coordination with internal security processes.
CISO responsible for cybersecurity strategy, operations, and regulatory compliance in leading blockchain ecosystem. Managing risk and fostering security culture within the organization.
Security Engineering Lead at Outset overseeing security policies, compliance, and hands - on security engineering. Collaborating with teams to ensure secure product infrastructure and practices.
Senior Penetration Tester working on TIBER and Red Team assignments in high - security sectors. Collaborate with experts to deliver comprehensive security assessments and enhance organizational security.
Senior Security Delivery Engineer safeguarding digital infrastructure at nbn by embedding security into CI/CD pipelines. Collaborating within DevSecOps teams to ensure resilient platforms.