We are looking for a Cloud Security Engineer to enhance our cloud security posture across various platforms, including Azure and enterprise SaaS solutions. This role requires expertise in implementing security controls, evaluating risks, and ensuring compliance with data protection regulations. The ideal candidate will have a strong understanding of secure cloud architectures and a passion for staying current with emerging trends in cloud security. You will collaborate with cross-functional teams to promote secure development practices and contribute to the continuous improvement of our security capabilities, ensuring the protection of our cloud environments and data assets.
Hybrid work schedule and on-site in Lynchburg, Virginia
Your day to day as a Cloud Security Engineer:
- Implements and audit cloud security controls to protect workloads across Azure and other IaaS/PaaS environments.
- Evaluates and secures SaaS and application platforms including Microsoft 365, enterprise SaaS solutions, containerized workloads, and DeveOps pipelines.
- Supports data protection and governance initiatives through configuration and operational use of Microsoft Purview (eDiscovery, Insider Risk, DLP).
- Conducts security reviews and risk assessments for cloud services, applications, and third-party integrations prior to deployment.
- Collaborates with architecture and development teams to embed secure-by-design practices into cloud architectures and processes.
- Monitors and assesses cloud security posture using native and enterprise tools to identify misconfigurations, vulnerabilities, and improvement opportunities.
- Supports supply chain and third-party risk management by evaluating vendor security practices and integration risks.
- Contributes to continuous improvement efforts by identifying process gaps, recommending enhancements, and helping mature cloud and on-premises security capabilities.
- Develops and maintains technical documentation for cyber security configurations, standards, and operational procedures.
- Stays current with emerging cloud security trends, technologies, and best practices relevant to enterprise environments.
Required qualifications:
- Bachelor's degree in Cybersecurity, IT, or related field preferred; equivalent experience may be considered.
- A minimum of 5 years of relevant experience.
- Hands-on experience securing cloud environments across Azure, AWS, or GCP, including identity, networking, storage, and workload protections.
- Experience with application and SaaS security including Microsoft 365, enterprise SaaS platforms, and containerized applications.
- Proficiency with Windows and Linux environments and their security hardening practices.
- Familiarity with data protection and governance tools such as Microsoft Purview (DLP, Insider Risk, eDiscovery).
- Understanding of DevOps and CI/CD security practices including code scanning, pipeline security, and secrets management.
- Knowledge of cloud security frameworks such as CIS Benchmarks, NIST CSF, or equivalent industry standards.
- Must demonstrate a strong commitment to confidentiality in handling sensitive information.
- Strong communication and documentation skills with the ability to translate technical concepts for diverse audiences.
- Ability to work collaboratively across teams and contribute to a positive, security-focused culture.
- Ability to obtain and maintain a Department of Energy (DOE) security clearance.
- U.S. citizenship required.
Preferred qualifications:
- Experience supporting third-party and supply chain risk assessments for cloud and SaaS vendors.
- One or more of the following certifications: AWS-SCS, AZ-500, GCP-PCSE, CISSP, CCSP, GCLD, Cloud+, or equivalent.
What we offer:
- Competitive salary and benefits package, including health, dental, and retirement plans.
- Flexible work schedules and paid time off to promote a healthy work-life balance.
- Professional development opportunities, including mentorship programs and sponsorship for continuing education.
- An inclusive atmosphere that celebrates new perspectives and supports collaboration between different generations.
- The chance to be part of a mission-driven organization making a positive impact on the future of energy.
- Opportunities for continuous learning and training to grow throughout your career!
Pay: $76,000 - $119,000