Regional InfoSecOps/ Cloud Security Engineer  

Position Description

We are hiring a Cloud Security Engineer to execute and improve the security posture of our cloud and platform environments. This role is hands-on and engineering-driven, focused on reducing real security risk through practical controls, automation, and collaboration. You will work closely with Platform/Infrastructure, DevOps, Engineering, and IT Ops teams to embed security into day-to-day operations. This role reports to the Security Manager and plays a critical part in strengthening IAM, cloud configurations, pipelines, and detection capabilities as the company scales.

1.Cloud security execution
  • Secure and continuously improve AWS environments, including IAM, networking, logging, and baseline configurations.
  • Identify, prioritize, and remediate cloud misconfigurations and insecure patterns.
  • Partner with Infrastructure teams to implement secure-by-default cloud architectures.
2. Identity and access management (IAM)
  • Review and reduce over-permissioned access across cloud and systems.
  • Implement and maintain least-privilege IAM role models.
  • Support joiner/mover/leaver processes in collaboration with IT Ops.
  • Assist with privileged access controls and access review processes.
3. CI/CD and platform security
  • Work with DevOps teams to secure CI/CD pipelines.
  • Implement controls to prevent secrets leakage and insecure deployments.
  • Improve secrets management, key rotation, and environment separation.
  • Support infrastructure-as-code security practices and reviews.
4. Monitoring, detection, and response support
  • Improve security logging, alerting, and visibility across cloud environments.
  • Support detection of abnormal or risky behavior.
  • Assist the Security Manager during incident investigations and root-cause analysis.
  • Ensure security findings lead to concrete remediation actions.
5. Security standards implementation
  • Translate security policies and standards into technical controls and guardrails.
  • Ensure security requirements are enforced through systems and automation rather than manual checks.
  • Help teams adopt secure patterns without slowing delivery.
6. Collaboration and enablement
  • Work directly with Infrastructure and Engineering teams on remediation and improvements.
  • Explain security risks and solutions clearly to engineers.
  • Avoid “security vs engineering” dynamics by focusing on outcomes and practicality.
  • Provide input and feedback to help shape future security standards and tooling.

Qualification and Experience

1. 4 to 7 years of experience in cloud, infrastructure, DevOps, or security engineering roles.
2. Strong hands-on experience with AWS.
3. Solid understanding of:
- IAM and role-based access control
- Cloud networking fundamentals
-Logging, monitoring, and alerting
-Secrets management
4. Experience working with CI/CD pipelines and DevOps tooling.
5. Practical problem-solving mindset with a bias toward automation.
6. Experience with infrastructure-as-code (Terraform, CloudFormation, etc.).
7. Familiarity with CSPM or cloud security tooling.
8. Experience supporting incident response or security investigations.
9. Exposure to application or API security concepts.
10.Experience in fast-moving or scaling environments.


a Necessity, not a Luxury