Cloud Security Engineer
The Opportunity We are seeking a Cloud Security Engineer to help clients design, implement, and maintain security controls that meet compliance and security requirements. This role is ideal for professionals with hands-on experience in cloud security engineering, compliance frameworks, and cloud-based security best practices. You’ll work closely with clients and internal teams to strengthen their cloud security posture and automate security operations across AWS, GCP, and Azure environments.
What You'll Do
Implement Cloud Security Controls: Apply and maintain security best practices across AWS, GCP, and Azure to ensure alignment with compliance and regulatory standards. Assess Cloud Environments: Evaluate client infrastructures to identify security risks, misconfigurations, and vulnerabilities, providing targeted remediation recommendations. Deploy and Manage Security Tools: Configure and maintain SIEM, IDS/IPS, vulnerability management, and identity solutions to strengthen cloud security posture. Support Compliance Initiatives: Contribute to SOC 2, ISO 27001, and HIPAA efforts through control implementation, testing, and evidence validation. Automate Security Operations: Develop and manage infrastructure-as-code (IaC) scripts to streamline and enforce consistent cloud security controls. Conduct Cloud Security Reviews: Perform architecture assessments and configuration reviews to ensure secure design and adherence to best practices. Collaborate with Engineering Teams: Integrate security practices into CI/CD pipelines and development workflows to prevent vulnerabilities early in the lifecycle. Assist in Incident Response: Investigate and remediate cloud-related security incidents to minimize exposure and restore integrity. Communicate with Clients: Engage directly with clients via multiple channels to address security inquiries and deliver actionable guidance. Client Relationship Management (Primary Focus) Own the Client Experience: Act as the primary point of contact for a portfolio of cloud security clients, building strong, trust-based relationships and ensuring consistent, high-quality engagement throughout all phases of service delivery. Guide Clients Through Cloud Security Initiatives: Lead clients through security improvement efforts — from initial assessments to implementation and ongoing optimization — with clear communication, defined milestones, and proactive support. Collaborate Closely with Client Teams: Partner with engineering, DevOps, and IT stakeholders to understand their cloud environments, address security gaps, and implement scalable, compliant solutions tailored to their infrastructure. Translate Security into Business Value: Communicate technical findings, risks, and recommendations in a clear, actionable manner that aligns with client priorities, compliance requirements, and operational goals. Manage Client Communications Proactively: Provide regular updates on project status, risks, and remediation progress, ensuring transparency and alignment across all stakeholders. Handle Escalations with Confidence: Address client concerns, incidents, and complex challenges with urgency and professionalism, delivering thoughtful, solution-oriented outcomes that maintain trust. Serve as a Trusted Cloud Security Advisor: Offer ongoing guidance on cloud security best practices, emerging threats, and compliance frameworks (e.g., SOC 2, ISO 27001, HIPAA), helping clients strengthen their long-term security posture. Drive Long-Term Client Success: Identify opportunities to enhance client environments through improved security architecture, automation, and process maturity, contributing to sustained value and partnership growth. Who You Are Hands-on experience securing AWS, GCP, or Azure environments. Strong understanding of cloud security principles, IAM, network security, and compliance controls. Proficiency in security automation using tools like Terraform, AWS CloudFormation, Python, or Bash. Working knowledge of compliance frameworks such as SOC 2, ISO 27001, GDPR, or HIPAA. Experience with Microsoft security and identity ecosystem, including Azure, Microsoft Entra (Azure AD), EDR, MDM, and VDI environments. Excellent troubleshooting and problem-solving abilities. Strong written and verbal communication skills in English. Ability to manage multiple client projects and interact directly with US-based clients.
Nice to Have
Experience with SIEM, IDS/IPS, vulnerability management, and log analysis tools. Relevant cloud security certifications (e.g., AWS Certified Security – Specialty, GCP Security Engineer, CISSP, CISM, or CISA). Familiarity with container security (Docker, Kubernetes) and DevSecOps practices. Understanding of Zero Trust and identity-centric security models. Prior experience working in a fast-paced startup or managed security environment.
What We Offer
Career Development: Clear path with mentorship and training opportunities Technical Training: Comprehensive onboarding on security and compliance frameworks Competitive Compensation: A competitive base salary with regular performance reviews linked to merit-based appraisals and bonus opportunities. Growth Opportunity: Early-stage company with significant room for career advancement. Remote-First Culture: Flexibility to work from anywhere while collaborating with a global team.
Work Environment
Requirements Reliable high-speed internet connection. Quiet, professional home office setup. Must be amenable to working US Eastern Time zone hours. Fluency in written and verbal English communication skills. Workstreet Is An Equal Opportunity Employer As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law. Employment with Workstreet is contingent upon the successful completion of a background check, which may include verification of employment history, education, and other relevant information, in compliance with applicable laws. Apply To This Job