Senior Cloud Security Engineer
job description
Job Description-
Location:
Remote
Contract type - Contract / C2C
Contract duration - 12 months
Juniper Networks Cyber Fusion is looking for a certified cybersecurity professional to join our highly collaborative and diverse team of talent. who will be responsible for ensuring the security and compliance of our cloud infrastructure and data. You will work with the engineering, DevOps, and IT teams to design, implement, and maintain security policies, controls, and tools. You will also perform audits, risk assessments, and incident response activities to ensure compliance with industry standards and regulations.
In this role, you will:
Develop and maintain security policies, standards, and procedures for cloud environments.
Collaborate with engineering and operations teams toward implementing controls and processes that address identified gaps.
Implement and monitor security controls and tools for cloud platforms and services. Support the security of AWS, GCP, Kubernetes/Docker, and Terraform-based infrastructure.
Mentor engineering and operations staff on unique cloud-based security controls
Conduct security assessments and audits of cloud infrastructure and data
Identify and remediate security vulnerabilities and incidents.
Support compliance initiatives and certifications for cloud environments
Provide security guidance and best practices to engineering, DevOps, and IT teams.
Stay updated on emerging security threats and trends for cloud environments.
Qualifications
Bachelor's degree in computer science, Information Security, or a related field
10+ years of experience in security engineering, cloud security, or compliance
Strong knowledge of cloud security concepts, principles, and practices
Familiarity with cloud security best practices and frameworks (e.G., CISv8, NIST, ISO, CSA)
Experience creating and maintaining security documentation, such as policies, standards, procedures, and guidelines.
Experience with tool sets relevant to modern cloud operations like SIEM, WAF, vulnerability scans, pen tests, CIS benchmarking, etc.
Working knowledge of OWASP Web/API vulnerabilities (CSRF, XSS, SQLI, etc.) and compensating controls.
Knowledge of Web/API security architecture common authentication and authorization technologies (OIDC, OAuth2, Spring Security, HMAC, WS-Security, WS-Trust).
Solid understanding of applied cryptography fundamentals (Encryption, Authentication, Symmetric Cryptography, Asymmetric Cryptography, etc.).
Ability to translate complex technical concepts into clear and concise language for diverse audiences and Attention to detail with quality assurance.
Hands-on experience with security tools, frameworks for cloud platforms (e.G., AWS, Azure, GCP), and technologies (e.G., firewalls, encryption, identity and access management, vulnerability scanning, penetration testing)
Experience with security standards and regulations for cloud environments (e.G., ISO 27001, SOC 2, PCI DSS, HIPAA, GDPR)
Experience with scripting languages (e.G., Python, Bash, PowerShell)
Excellent communication, collaboration, and problem-solving skills
Certifications in cloud security or compliance (e.G., AWS Certified Security Specialist, Azure Security Engineer, CCSK, CCSP) are mandatory.
Basic Requirements
Effective verbal and non-verbal communication skills at all levels of the organization
Leadership teamwork and collaboration
Discretion
Problem solving
Critical Thinking
Self-initiated/sufficient
Motivated