Cloud Security Tech lead

Requirements

• Required:
• 9+ years of experience in cloud security engineering, DevSecOps, or cloud security operations.
• Proven experience acting as a technical lead or senior engineer supporting cloud security programs in a global enterprise environment.
• Hands-on expertise securing Google Cloud Platform (GCP), with working knowledge of AWS, Azure, and OCI.
• Strong experience with native cloud security tools such as GCP Security Command Center, AWS Security Hub, Azure Defender for Cloud, and OCI Cloud Guard.
• Deep understanding of IAM, network security, encryption, key management, logging, and monitoring across cloud platforms.
• Experience implementing and operationalizing CSPM, CWPP, and cloud IAM solutions.
• Hands-on experience with infrastructure-as-code security using Terraform, CloudFormation, or equivalent tools.
• Strong scripting and automation skills using Python, Bash, PowerShell, or cloud-native tooling.
• Experience supporting compliance initiatives aligned with CIS benchmarks, NIST CSF, and ISO 27001.
• Strong analytical, leadership, and stakeholder communication skills.
• Ability to support after-hours coordination or incident response activities as needed.
• Preferred:
• Bachelor's degree in computer science, Cybersecurity, Information Technology, or equivalent practical experience.
• Cloud security certifications such as Google Professional Cloud Security Engineer, AWS Certified Security - Specialty, or Azure Security Engineer Associate.
• Security certifications such as CISSP, CCSP, or CIS

Additional Information

Cloud Security Tech lead is responsible for leading and delivering day-to-day cloud security operations across Google Cloud Platform (GCP), Amazon Web Services (AWS), Microsoft Azure, and Oracle Cloud Infrastructure (OCI). This role combines hands-on technical execution with technical leadership, ensuring cloud security risks are accurately identified, prioritized, and remediated in alignment with business risk, Zero Trust principles, and regulatory requirements. Cloud Security Tech lead provides direct technical leadership and guidance to cloud security engineers and analysts while partnering closely with Security Operations, IT, Engineering, and Application teams to drive remediation accountability and continuous improvement. Operating within a global delivery model, this role serves as a key execution and escalation point to ensure consistency, scalability, and resilience of the organization's cloud security program. In addition to operational ownership, cloud security strategy, tooling optimization, automation, and analytics, ensuring the cloud security capability evolves alongside emerging threats, technologies, and compliance requirements. Roles and Responsibilities Provide direct technical leadership and day-to-day oversight of cloud security operations across GCP (primary), AWS, Azure, and OCI. Own and manage cloud security operations including configuration reviews, misconfiguration detection, prioritization, remediation tracking, and validation. Serve as a key execution partner and escalation point for cloud security initiatives, ensuring alignment with enterprise security strategy and priorities. Design, optimize, and maintain cloud security review and monitoring strategies using native cloud security tools and CSPM platforms. Translate large-scale cloud security findings into actionable risk intelligence through dashboards, metrics, and executive reporting. Drive risk-based prioritization of cloud security issues using threat intelligence, asset criticality, exposure, and business impact. Partner with application owners, DevOps, and platform teams to provide clear remediation guidance and influence timely risk reduction decisions. Ensure secure implementation and continuous improvement of IAM, network segmentation, encryption, logging, and monitoring controls across cloud platforms. Lead and support secure architecture and design reviews for new and existing cloud workloads. Champion Zero Trust principles and security-by-design practices across cloud environments. Develop, enhance, and maintain automation and scripting to detect misconfigurations and enforce cloud security baselines. Integrate CSPM and cloud security tooling with SIEM and SOAR platforms to improve visibility and response. Monitor emerging cloud security threats, vulnerabilities, and regulatory changes, incorporating lessons learned into improved controls and processes. Develop, maintain, and continuously improve cloud security runbooks, playbooks, and operational documentation. Mentor and develop cloud security engineers and analysts, strengthening technical depth and operational maturity. Provide advanced escalation support for complex cloud security findings, tooling issues, and remediation challenges. Work hours may vary, and the position may require availability during off-business hours due to incidents, system changes, or project needs. Additional duties may be assigned as necessary to meet the ongoing needs of the organization.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Mattelinc? Share your experience