Cloud Security Engineer

Description. STG is seeking an experienced and hands-on Cloud Security Engineer to secure and protect our cloud environments, with a strong emphasis on Microsoft Azure. The ideal candidate will have deep expertise in cloud security, a proactive approach to threat detection and mitigation, and a passion for safeguarding data and infrastructure in the cloud. This role demands a professional who is both strategic and tactical, with the ability to design, implement, and manage security measures that protect STGs cloud assets from evolving threats

 

 

What you'll do:. Architect & Secure Cloud Infrastructure: Design, implement, and maintain robust cloud security architectures in Azure (primary), with additional support for AWS and GCP, ensuring alignment with industry standards and organizational security requirements
Policy & Compliance Management: Develop, enforce, and refine cloud security policies, standards, and guidelines, ensuring compliance with regulatory requirements and minimizing risks
Threat Detection & Incident Response: Configure and manage cloud-based SIEM tools to monitor, detect, and respond to security threats in real-time. Investigate and analyze security incidents, perform root cause analysis, and implement corrective actions
Cloud Security Posture Management: Utilize Cloud Security Posture Management (CSPM) tools to continuously assess and improve the security posture of cloud environments.

Regularly conduct security reviews and vulnerability assessments, prioritizing and driving remediation efforts
Data Protection & Encryption: Secure cloud connections and ensure encryption of data within the Azure environment, implementing best practices for data protection and privacy
Identity & Access Management: Manage Identity and Access Management (IAM) policies, including role-based access control (RBAC) and least privilege principles, to ensure secure access to cloud resources
Collaboration & Support: Work closely with cross-functional teams to provide guidance on secure coding practices, cloud security best practices, and the implementation of DevSecOps principles
Continuous Improvement: Monitor cloud environments for anomalies and compliance violations, generate reports on security metrics, and contribute to the continuous enhancement of STGs cloud security posture
What you'll have:. Education & Experience: Bachelors degree in Computer Science, Information Technology, or a related field, or equivalent work experience. An advanced degree is preferred. Minimum of 5 years experience in cloud security roles, with a strong focus on Microsoft Azure
Certifications: Relevant certifications such as CISSP, CCSP, or Microsoft Certified Azure Security Engineer Associate are highly desirable
Technical Expertise: Extensive hands-on experience with cloud security tools and technologies, including CSPM, Kubernetes, Container-based protections, WAF, PowerShell scripting, and vulnerability scanners.

Proficiency in securing Azure environments is essential
Security Principles: In-depth understanding of cloud security principles, technologies, and best practices, including Zero Trust architecture and DevSecOps strategies
Problem-Solving Skills: Strong analytical abilities to assess complex security issues and propose effective, scalable solutions

Communication & Collaboration: Excellent communication skills, with the ability to work effectively with cross-functional teams and provide leadership in cloud security initiatives
Independence & Initiative: Demonstrated ability to work independently, prioritize tasks, and manage multiple projects in a dynamic environment
What we'll offer:. 8 paid holidays and 1 additional floating Diversity Day. PTO program based on role and tenure, starting at 15 days!. Incentive Bonus Program based on role within STG. Comprehensive Benefits that include Medical, Vision, and Dental Insurance Options. 401K program with Employer match.