Cloud Security Engineer

4 days ago

🤠 Texas – Remote

Although this job is listed in Texas, this company may be open to hiring remote in other states.

⏰ Full Time

🟡 Mid-level

🟠 Senior

👮‍♂️ Security Engineer

Apply Now

Receive Emails with Similar Jobs

Endava

WebsiteLinkedInAll Job Openings

Endava is a technology company that partners with clients to drive meaningful change through innovative technological solutions. With over two decades of experience, Endava combines world-class engineering, industry expertise, and a people-centric mindset to transform businesses across various sectors. Specializing in areas such as finance and banking, healthcare, media, and telecommunications, Endava leverages its industry-specific knowledge to create solutions that meet the evolving needs of the market. The company is committed to building trusted partnerships and creating positive impacts for both businesses and people.

Digital Strategy • Continuous Delivery & DevOps • Digital Execution • Applications Management • UX/Creative Services

10,000+ employees

Founded 2000

🏢 Enterprise

💰 Post-IPO Debt on 2023-02

📋 Description

• Our infrastructure specialists are responsible for designing and implementing back-end services • They ensure reliability, security, and scalability for all platform layers within our solutions • Infrastructure teams provide expertise across virtualization, cloud services, storage solutions, cybersecurity, and scripting and automation • We are looking for a Cloud Security Engineer with expertise in Google Cloud Platform (GCP) and other cloud environments (AWS, Azure) to design, implement, and maintain cloud security solutions • The ideal candidate will focus on securing cloud infrastructure, enforcing security policies, automating security processes, and ensuring compliance with industry standards • Implement and manage security controls across Google Cloud Platform (GCP), AWS, and Azure environments • Configure and maintain IAM policies, service accounts, and role-based access controls (RBAC) to enforce least privilege access • Secure cloud networks by implementing firewall rules, VPC segmentation, private networking, and DDoS protection • Deploy and manage cloud-native security tools such as Google Security Command Center, AWS Security Hub, and Azure Defender • Automate security configurations and compliance enforcement using Terraform, CloudFormation, or Deployment Manager • Monitor and analyze security logs, events, and alerts using SIEM tools (Google Chronicle, Splunk, or ELK) • Investigate and respond to cloud security incidents, including unauthorized access and misconfigurations • Conduct security assessments, vulnerability scans, and risk evaluations for cloud environments • Implement and enforce data security policies, including encryption, DLP, and access controls • Secure Kubernetes workloads (GKE, EKS, AKS) by applying security policies and monitoring runtime threats • Ensure compliance with security frameworks (NIST, CIS Benchmarks, ISO 27001, SOC 2, PCI-DSS) • Develop and maintain security documentation, policies, and best practices for cloud environments • Collaborate with DevOps, networking, and security teams to enhance cloud security posture • Stay updated on emerging cloud security threats and evolving best practices

🎯 Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field (or equivalent experience) • 5+ years of experience in cloud security, cloud engineering, or cybersecurity roles • 3+ years of hands-on experience securing cloud environments (GCP, AWS, or Azure) • Strong knowledge of Google Cloud Platform (GCP) security, including IAM, VPC security, Cloud Armor, Security Command Center, IAP, and Shielded VMs • Experience with AWS IAM, Security Hub, GuardDuty, Shield, KMS, and WAF • Experience with Azure AD, Defender for Cloud, Sentinel, and Security Center • Deep understanding of cloud network security, including firewalls, VPC Service Controls, private networking, and micro-segmentation • Experience implementing data security controls, including encryption (KMS, HSMs), data loss prevention (DLP), and data access policies • Strong understanding of container security for Kubernetes workloads in GKE, EKS, or AKS, including workload identity, pod security policies, and runtime security • Expertise in identity and access management (IAM), role-based access control (RBAC), least privilege principles, OAuth, SAML, and workload identity federation • Hands-on experience with Infrastructure as Code (IaC) using Terraform, CloudFormation, or Deployment Manager

🏖️ Benefits

• Competitive salary package • Share plan • Company performance bonuses • Value-based recognition awards • Referral bonus • Career coaching • Global career opportunities • Non-linear career paths • Internal development programmes for management and technical leadership • Complex projects • Rotations • Internal tech communities • Training • Certifications • Coaching • Online learning platforms subscriptions • Pass-it-on sessions • Workshops • Conferences • Hybrid work and flexible working hours • Employee assistance programme • Global internal wellbeing programme • Access to wellbeing apps • Global internal tech communities • Hobby clubs and interest groups • Inclusion and diversity programmes • Events and celebrations