Full-Time Cloud Security Engineer

About the roleEverway is seeking a highly skilled cloud security engineer with strong hands-on experience and knowledge of cloud security best practices. You will play a key role in securing our cloud infrastructure, enforcing security policies, and collaborating with infrastructure, development, and compliance teams.

Key Responsibilities

• Architect, implement, and manage security controls in AWS and Azure environments to protect cloud infrastructure, workloads, and data.
• Conduct threat modeling and risk analysis to identify and mitigate vulnerabilities.
• Securely configure and audit cloud IAM policies, role-based access control (RBAC), and implement least-privilege principles.
• Be familiar with cloud-native compute, storage, and security services (e.g., AWS Security Hub, GuardDuty, CloudTrail, and Azure Monitor).
• Collaborate with DevOps and development teams to integrate security into CI/CD pipelines and cloud-native applications.
• Investigate and respond to cloud security incidents, misconfigurations, and compliance gaps.

Essential Criteria

• 3+ years of experience in cloud security, focusing on AWS and Azure.
• Deep understanding of AWS security services (IAM, Security Hub, GuardDuty, KMS, WAF, S3 bucket ACLs and encryption).
• Strong knowledge of AWS networking security (VPCs, security groups, VPNs, private link services).
• Strong knowledge of Azure Defender, Sentinel, and Security Center.
• Hands-on experience securing serverless architecture (e.g., AWS Lambda, API gateway) and containerized environments (e.g., Kubernetes).
• Experience with cloud security monitoring, SIEM, and incident response.

Desirable Criteria

• Ability to automate security processes using IaC tools (Terraform, AWS CloudFormation, or CDK).
• Experience with Zero Trust security models in cloud environments.
• Certifications like CISSP, AWS Security Specialty, or CCSP.

What is the last date for applying to the job?

Which countries are accepted for this remote job?