Principal Cloud Security Engineer

We are seeking an experienced and proactive DevSecOps engineer with expertise in AWS and AZURE Platforms to join our Cybersecurity Application Platform Security Team. This role combines expertise in AWS & AZURE platforms security with a strong foundation in DevSecOps practices to ensure the ‘secure by design’, ‘secure by default’ principles throughout development, deployment, and operation of AWS & AZURE platforms. The ideal candidate will have hands-on experience with Cybersecurity platforms, with a deep understanding of AWS & AZURE cloud platforms. This position plays a critical role in assisting customer portfolio teams to secure SaaS, PaaS platforms, maintain compliance and availability.

DevSecOps engineer role responsible for security automation of cloud services.

Job Responsibilities

1. Secure the AWS & AZURE Platform : Implement best practices to ensure AWS & AZURE applications are “secure by design” and “secure by default” protecting sensitive data and workflows.
2. Provide guidelines on usage of AppExchange / Vendor products versus using out of box capabilities with a keen eye for cybersecurity risk.
3. Risk Identification & Mitigation : Proactively identify security risks across the AWS & AZURE ecosystem and implement solutions to address vulnerabilities.
4. DevSecOps Enablement : Drive DevSecOps practices within the organization by embedding security into the development lifecycle of AWS & AZURE applications.
5. Collaboration with Stakeholders : Partner with various customer portfolio teams to influence their roadmaps, ensuring security is a foundational element in their strategies.
6. Data Security & Compliance : Ensure compliance with data protection regulations and implement robust data security measures within AWS & AZURE and integrated systems.
7. Cloud Integration Expertise : Leverage your knowledge of AWS & AZURE to secure integrations
8. Continuous Improvement : Stay up to date on emerging threats, trends, and technologies in application security to continuously improve our security posture.
9. Communication & Advocacy : Act as a trusted advisor on security matters, effectively communicating complex technical concepts to both technical and non-technical stakeholders.

Qualifications

We’re looking for someone with :

• Recent 5+ years of experience in IT focused on DevSecOps, DevOps or Security Engineering roles.
• Recent 3+ years of shell scripting, aws-cli, python, lambda.
• Recent 1+ years of Terraform deployments and Terraform templates (Infrastructure as Code).
• Knowledge of and experience with CI / CD technologies.
• Knowledge of and experience with continuous security practices.
• Knowledge of infrastructure automation and infrastructure as code.
• Demonstrated ability to integrate security practices into AWS & AZURE applications.
• Proficiency in data protection techniques such as encryption, tokenization, and access controls.
• Bachelor’s degree in computer science, Information Security, or a related field.

Desired Skills

• Experience with Salesforce, SAP, and MuleSoft architecture, development, and administration with a focus on platform security (e.g., profiles, roles, permissions, encryption).
• Excellent Communication Skills : Ability to clearly articulate security concepts to diverse audiences, including engineers, product managers, and executives.
• Collaboration & Influence : Proven ability to work cross-functionally with teams to align on security priorities and influence roadmaps.

Preferred Technical Skills / Qualifications

• Relevant certifications in Cybersecurity – SSCP, CISSP, CISM preferred.
• AWS certifications (e.g., AWS Certified Solutions Architect or AWS Certified Security Specialty).
• AZURE certifications.
• Experience with regulatory frameworks like GDPR, CCPA, or HIPAA.

The ideal candidate will be passionate about security, have a proactive mindset, and be able to balance security requirements with business needs. They should be comfortable working in a fast-paced environment and be able to adapt to evolving security threats and technologies.