Cyber Cloud Solution Engineer Lead/Staff
ExternalPrepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
Responsibilities
- Essential Job Functions & Tasks
- Responsibilities include the following related to securing cloud compute, network, storage, and end user infrastructure:
- AWS Security Engineering: Design, build, and maintain enterprise-grade security controls utilizing third party SSE and native AWS security services.
- Multi-Cloud Support: Provide primary to AWS / secondary security engineering, posture management, and threat detection support for Azure, GCP, and OCI environments.
- DevSecOps & Automation: Work with our Cloud Engineering group to help o perationalize Infrastructure as Code ( IaC ) and Policy as Code ( PaC ) to automate security guardrails, vulnerability scanning, and compliance checks.
- SSE Management: Architect and maintain policies within the third party SSE platform to protect corporate data and govern cloud applications across our primary cloud environments.
- Incident Response & Threat Hunting: Partner with our SOC to investigate cloud-specific security incidents, develop automated remediation playbooks, and conduct threat-modeling exercises.
- Preferred Capabilities and Qualifications
- Candidates must demonstrate a deep, hands-on technical understanding and operational compatibility with the following:
- Native AWS Security Ecosystem: Comprehensive understanding of AWS security services, including but not limited to: AWS IAM (complex policies, permission boundaries, organizations), AWS GuardDuty , AWS Security Hub, AWS Config, AWS CloudTrail, KMS, Macie, and Network Firewall.
- Multi-Cloud Fundamentals: Functional technical competency and architectural understanding of security controls in Azure (Entra ID, Microsoft Defender for Cloud), GCP (Security Command Center, IAM), and OCI (Identity and Access Management, Cloud Guard).
- Automation & Code: Strong proficiency in IaC tools (specifically Terraform or AWS CloudFormation) and a deep understanding of PaC frameworks (such as Open Policy Agent/Rego, AWS CloudFormation Guard, or HashiCorp Sentinel) to enforce compliance before deployment.
- Enterprise Networking & SASE/SSE: Foundational understanding of cloud routing, VPC/ VNet peering, CASB (Cloud Access Security Broker), Secure Web Gateway (SWG), and Zero Trust Network Access (ZTNA) concepts.
- The ideal candidate will stand out if they possess the following advanced capabilities:
- SASE/SSE Experience : Direct, hands-on experience configuring, tuning, and deploying a SASE/SSE platform (CASB, SWG, DLP) across AWS, Azure, and GCP.
- Advanced IaC / PaC Implementation: Proven track record of building automated compliance pipelines that block non-compliant code and infrastructure from being merged into production.
- Cloud Security Architecture: Experience shifting organizations from reactive security monitoring to proactive cloud security posture management (CSPM) and continuous compliance.
- Industry Certifications: Highly preferred certifications include:
- AWS Certified Security - Specialty
- AWS Certified Solutions Architect - Professional
- CCSP (Certified Cloud Security Professional) / CISSP
- Other AWS, Microsoft A zure , G oogle Cloud Platform, or Oracle Cloud Infrastructure certifications.
- CCIPS, CCSP, CERT Incident Response Process Professional
- CISM, CISSP, CNDA, CNPS
- GIAC Certifications (e.g., GC
Additional Information
Job Posting End Date 07-13-2026 Please note the job posting will close on the day before the posting end date. Job Summary Part of a larger team delivering high quality technology solutions to the business. Design, develop and install software solutions. Build high-quality, innovative and fully performing software in compliance with internal architecture, development & design standards & best practices. Design, modify, develop, write, implement and troubleshoot software programming applications. Support and/or install software applications. Participate in the testing process through test review and analysis, test witnessing and certification of software. Works within a Waterfall or Agile methodology/framework based team. Collaborates heavily with Project Management, Business Analyst and Infrastructure Job Families. Job Description As an Advanced Cloud Security Engineer, you will serve as a technical anchor for our enterprise cloud defense strategy. Your primary mission will be engineering , implementing, and monitoring robust security guardrails within our Amazon Web Services (AWS) ecosystems, while providing critical secondary security engineering support across our multi-cloud footprint, including Microsoft Azure, Google Cloud Platform (GCP), and Oracle Cloud Infrastructure (OCI). In this role, you won't just be managing alerts- you will be treating infrastructure as code, embedding security directly into the CI/CD pipeline, and defining policy as code to enforce continuous compliance. Additionally, you will play a key role in managing and optimizing our third party SSE (Security Service Edge) platform to seamlessly secure data, web, and cloud access across AWS, Azure, and GCP environments.
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at aep? Share your experience