Cloud Security Engineer

🕒 April 23

🇺🇸 United States – Remote

💵 $120k - $145k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

WorkWave

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 1984

☁️ SaaS

🚗 Transport

🤝 B2B

SaaS • Transport • B2B

WorkWave is a leading provider of field service management software designed to enhance the efficiency of businesses across a wide range of industries. Their software solutions streamline operations, optimize workflows, and improve customer experiences. WorkWave's products encompass CRM & ERP software, field operations management, routing and scheduling, billing and payments, along with fintech and marketing solutions. With tools tailored for industries such as pest control, cleaning, HVAC, lawn care, and delivery, WorkWave aims to support businesses in increasing operational efficiency and customer satisfaction through technology-driven solutions.

📋 Description

• Lead the deployment and optimization of AWS Control Tower, Security Hub, and AWS WAF to establish a secure multi-account strategy. • Own cloud security outcomes across AWS (primary), Azure (secondary), and limited GCP, including secure landing zone standards, guardrails-as-code, detection coverage, and remediation automation. • Design and implement reusable, secure-by-default cloud patterns that allow engineering teams to deploy safely without constant security intervention. • Collaborate with the AppSec Architect to secure EKS and ECS environments, focusing on runtime protection, image scanning, and least-privilege orchestration. • Perform a comprehensive baseline assessment of the current cloud environment to identify gaps and provide actionable, prioritized recommendations. • Lead design and enforcement of least-privilege IAM architecture across AWS accounts and workloads. • Develop and maintain secure configuration standards, documentation, and operational procedures that enable engineering teams to consistently deploy and operate cloud services securely. • Partner with security operations to ensure security telemetry from AWS environments is complete, centralized, and actionable. • Ensure cloud configurations and controls align with internal security standards and external compliance requirements. • Manage secure access and configuration for security vendor tools within the cloud environment. • Participate in an on-call rotation for cloud security incidents. • Build and run the cloud vulnerability management program for AWS and Azure workloads. • Own onboarding, coverage validation, and tuning of CSPM and MDR integrations across AWS, Azure and GCP. • Design and enforce secure secrets management patterns. • Secure the software delivery pipeline end-to-end. • Build cloud-native incident playbooks and run periodic tabletop exercises. • Establish minimum viable security baselines for Azure and GCP and ensure telemetry parity into centralized detection. • Define and report on key cloud security metrics and use them to prioritize work.

🎯 Requirements

• 5–8+ years of experience in Information Security, with at least 3+ years focused specifically on AWS Cloud Security. • Deep hands-on experience designing and securing AWS environments, core services (IAM, VPC, S3, KMS) and security-specific services (GuardDuty, Inspector, Config). • Strong hands-on experience with Terraform for managing cloud infrastructure. • Proven experience securing containerized workloads in EKS or ECS. • Willingness to provide basic security support/maintenance for an existing Azure environment (Deep expertise not required; AWS is the priority). • Ability to assess a complex environment and provide a "roadmap to green" rather than just identifying problems. • Ability to work side-by-side with engineers, speaking their language and helping them solve problems rather than just "blocking" tickets. • Capability to translate technical configurations into clear, repeatable processes and procedures. • A drive to automate manual security tasks to increase efficiency and reduce human error. • Bachelor’s degree in Computer Science, Information Security, or a related field or equivalent work experience. • Industry certifications such as Azure security certification, AWS Certified Security – Specialty or related are highly desirable.

🏖️ Benefits

• Employees can expect a robust benefits package, including health and dental and 401k with company match • Find your perfect work/life balance with our Flexible Time Off policy or generous PTO plan (role dependent) and paid holidays • Up to 4 weeks paid bonding leave • Tuition reimbursement • Robust Employee Assistance Program through TotalCare offering free counseling 24/7/365, plus financial counseling, legal guidance, adoption assistance services and much more! • 24/7 access to virtual medical care with Teladoc • Quarterly awards based on peer nominations • Regional discounts and perks • Opportunities to participate in charitable events and give back to the community