Cloud Security Engineer

E

Endava

Cloud Security Engineer

Dallas, TX
Full Time
Paid
  • Responsibilities

    Job Description

    Our infrastructure specialists are responsible for designing and implementing back-end services. They ensure reliability, security, and scalability for all platform layers within our solutions. Infrastructure teams provide expertise across virtualization, cloud services, storage solutions, cybersecurity, and scripting and automation.

    We are looking for a Cloud Security Engineer with expertise in Google Cloud Platform (GCP) and other cloud environments (AWS, Azure) to design, implement, and maintain cloud security solutions. The ideal candidate will focus on securing cloud infrastructure, enforcing security policies, automating security processes, and ensuring compliance with industry standards.

    Responsibilities:

    • Implement and manage security controls across Google Cloud Platform (GCP), AWS, and Azure environments.
    • Configure and maintain IAM policies, service accounts, and role-based access controls (RBAC) to enforce least privilege access.
    • Secure cloud networks by implementing firewall rules, VPC segmentation, private networking, and DDoS protection.
    • Deploy and manage cloud-native security tools such as Google Security Command Center, AWS Security Hub, and Azure Defender.
    • Automate security configurations and compliance enforcement using Terraform, CloudFormation, or Deployment Manager.
    • Monitor and analyze security logs, events, and alerts using SIEM tools (Google Chronicle, Splunk, or ELK).
    • Investigate and respond to cloud security incidents, including unauthorized access and misconfigurations.
    • Conduct security assessments, vulnerability scans, and risk evaluations for cloud environments.
    • Implement and enforce data security policies, including encryption, DLP, and access controls.
    • Secure Kubernetes workloads (GKE, EKS, AKS) by applying security policies and monitoring runtime threats.
    • Ensure compliance with security frameworks (NIST, CIS Benchmarks, ISO 27001, SOC 2, PCI-DSS).
    • Develop and maintain security documentation, policies, and best practices for cloud environments.
    • Collaborate with DevOps, networking, and security teams to enhance cloud security posture.
    • Stay updated on emerging cloud security threats and evolving best practices.
  • Qualifications

    Qualifications

    • Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field (or equivalent experience).
    • 5+ years of experience in cloud security, cloud engineering, or cybersecurity roles.
    • 3+ years of hands-on experience securing cloud environments (GCP, AWS, or Azure).
    • Strong knowledge of Google Cloud Platform (GCP) security, including IAM, VPC security, Cloud Armor, Security Command Center, IAP, and Shielded VMs.
    • Experience with AWS IAM, Security Hub, GuardDuty, Shield, KMS, and WAF
    • Experience with Azure AD, Defender for Cloud, Sentinel, and Security Center
    • Deep understanding of cloud network security, including firewalls, VPC Service Controls, private networking, and micro-segmentation.
    • Experience implementing data security controls, including encryption (KMS, HSMs), data loss prevention (DLP), and data access policies.
    • Strong understanding of container security for Kubernetes workloads in GKE, EKS, or AKS, including workload identity, pod security policies, and runtime security.
    • Expertise in identity and access management (IAM), role-based access control (RBAC), least privilege principles, OAuth, SAML, and workload identity federation.
    • Hands-on experience with Infrastructure as Code (IaC) using Terraform, CloudFormation, or Deployment Manager.

    Additional Information

    Discover some of the global benefits that empower our people to become the best version of themselves:

    • Finance: Competitive salary package, share plan, company performance bonuses, value-based recognition awards, referral bonus;
    • Career Development : Career coaching, global career opportunities, non-linear career paths, internal development programmes for management and technical leadership;
    • Learning Opportunities: Complex projects, rotations, internal tech communities, training, certifications, coaching, online learning platforms subscriptions, pass-it-on sessions, workshops, conferences;
    • Work-Life Balance: Hybrid work and flexible working hours, employee assistance programme;
    • Health: Global internal wellbeing programme, access to wellbeing apps;
    • Community: Global internal tech communities, hobby clubs and interest groups, inclusion and diversity programmes, events and celebrations.

    Additional Employee Requirements

    • Participation in both internal meetings and external meetings via video calls, as necessary.
    • Ability to go into corporate or client offices to work onsite, as necessary.
    • Prolonged periods of remaining stationary at a desk and working on a computer, as necessary.
    • Ability to bend, kneel, crouch, and reach overhead, as necessary.
    • Hand-eye coordination necessary to operate computers and various pieces of office equipment, as necessary.
    • Vision abilities including close vision, toleration of fluorescent lighting, and adjusting focus, as necessary.
    • For positions that require business travel and/or event attendance, ability to lift 25 lbs, as necessary.
    • For positions that require business travel and/or event attendance, a valid driver’s license, as necessary.

    *If requested, reasonable accommodations will be made to enable employees requiring accommodations to perform the essential functions of their jobs, absent undue hardship.

    USA Benefits

    • Robust healthcare and benefits including Medical, Dental, vision, Disability coverage, and various other benefit options
    • Flexible Spending Accounts (Medical, Transit, and Dependent Care)
    • Employer Paid Life Insurance and AD&D Coverages
    • Health Savings account paired with our low-cost High Deductible Medical Plan
    • 401(k) Safe Harbor Retirement plan with employer match with immediately vest

    Our diversity makes us stronger - it drives meaningful change and enables us to build innovative technology solutions. We are committed to creating an inclusive community where all of us, regardless of background, identity, or personal characteristics, feels valued, respected, and free from discrimination. As an equal opportunity employer, we welcome applications from all individuals and base hiring decisions on merit, skills, qualifications, and potential.