Security Risk Advisors Intl., LLC (SRA) is offering a Cloud Security Engineer position. This roleย is responsible forย designing, implementing, andย maintainingย security controls across SRA's multi-cloud environment, spanning Microsoft Azure/Entra ID, Google Cloud Platform (GCP), and Amazon Web Services (AWS). The Cloud Security Engineer will work closely with internal IT, security operations, and engineering teams to ensure cloud infrastructure is deployed andย maintainedย in a secure, compliant, and resilient manner.ย
Essential Functionsย
- Design, implement, andย maintainย cloud security architectures across Azure/Entra ID, GCP, and AWS environments.ย
- Administer and continuously improve cloud identity and access management (IAM) policies, roles, and privilege models across all three platforms.ย
- Monitor cloud environments for misconfigurations, threats, and vulnerabilities using cloud-native and third-party security tooling (e.g., Defender for Cloud, Security Command Center, AWS Security Hub).ย
- Operationalize cloud vulnerability and patch management processes, ensuringย timelyย remediation of identified risks.ย
- Implement andย maintainย Cloud Security Posture Management (CSPM) solutions to enforce security baselines and compliance standards.ย
- Develop and enforce cloud security policies, standards, and guardrails (e.g., Azure Policy, GCP Organization Policies, AWS SCPs).ย
- Collaborate with engineering and DevOps teams to embed security into CI/CD pipelines and infrastructure-as-code (IaC) workflows.ย
- Conduct cloud security assessments and architecture reviews for new and existing environments.ย
- Support incident response activities related to cloud infrastructure, including investigation, containment, and remediation.ย
- Create andย maintainย technical documentation for cloud security architectures, configurations, and operational procedures.ย
- Research and evaluate emerging cloud security technologies and provide recommendations for adoption.ย
- Developย detectionย content and security analytics in SRA's internal SOC applicable to cloud environments.ย
Requirements
Competenciesย
In-depth understanding of:ย
- Microsoft Azure and Entra ID, including conditional access, PIM, and Defender for Cloudย
- Google Cloud Platform (GCP) security services, including Security Command Center, IAM, and VPC Service Controlsย
- Amazon Web Services (AWS) security services, including IAM,ย GuardDuty, Security Hub, and AWS Configย
- Cloud identity and access management principles and zero trust architectureย
Working knowledge of:ย
- Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platforms (CWPP)ย
- Infrastructure-as-Code (IaC) tools such as Terraform, Bicep, or CloudFormationย
- Networking concepts as applied to cloud environments (VPCs, peering, private endpoints, firewalls)ย
- SIEM and EDR technologies in cloud-integrated environmentsย
Experience with:ย
- CI/CD pipeline security andย DevSecOpsย practicesย
- Organizing or supporting penetration testing, purple team exercises, or cloud-focused security assessmentsย
- Compliance frameworks relevant to cloud environments (e.g., CIS Benchmarks, NIST CSF, SOC 2)ย
Moderate experience with:ย
- Scripting and automation using Python, PowerShell, or Bashย
- Automation via tools such as Power Automate, Logic Apps, or cloud-native orchestration servicesย
Supervisory Responsibilityย ย
Noneย
Work Environmentย ย ย ย
This jobย operates on-siteย in a professional office environment or remotely as needed/required. This role routinely uses standard office equipment.ย ย
Physical Demandsย ย
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employeeย is regularly required toย talk and hear; use hands to finger, handle, or feel; and reach with hands and arms. The employeeย frequentlyย is required toย stand and walk. This is aย largely sedentaryย role.ย ย
Candidates with disabilities are encouraged to apply and emailย careers@sra.ioย with any questions. Reasonable accommodations may be made to enable disabled individuals to perform the essential functions of this role.ย ย
Position Type/Expected Hours of Workย ย ย ย
This is a full-timeย positionย and hours of work and days are Monday through Friday 8:30am to 5pm.ย Occasional evening and weekend work may beย requiredย as job duties demand.ย ย
Travelย ย ย ย
Less than 5%.ย
Required Education and Experienceย
- Punctuality andย timelyย attendance to external client and internal stakeholder needs.ย
- Aย bachelor's degree in Information Technology, Computer Science, or a similar field of study, or equivalent experience.ย
- 3+ years of hands-on experience in cloud security engineering or a related role, with demonstrable experience across at least two of the three major cloud platforms (Azure, GCP, AWS).ย
- Relevant cloud security certifications preferred (e.g., AZ-500, SC-100, Google PCSE, AWS Security Specialty).ย
- A passionย for learning about cloud security, emerging technologies, and threat landscapes.ย
- Excellent verbal and written communication skills.ย
- Strong time management and organizational skills.ย
Other Dutiesย ย ย
Pleaseย noteย this job description is not designed to cover orย containย a comprehensive listing of activities, duties or responsibilities that areย required ofย the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.ย ย
EEO Statementย ย
Security Risk Advisorsย isย an Equal Opportunity Employer and prohibits discrimination or harassment of any kind. All employment decisions at SRA are based on business needs, job requirements, and individual qualifications, without regard to race, color, sex, sexual orientation, gender identity or expression, age, religion, national origin, disability, marital or family status, veteran status, medical condition, or any similar category protected under federal, state, or local laws.ย ย ย ย
Benefits
Work with Experts: Robust internal training program, plus Company-paid external training. SRA recognizes the value of professional development for employees. Therefore, we encourage our employees to pursue continuing education and role-specific training. Every SRA employee is eligible to attend one training per year paid for by SRA.ย
Mental Health Services: SRA has partnered with BetterHelp to provide SRA employees with free mental health support. BetterHelp connects individuals with licensed therapists for chat, video, and phone sessions.ย
Medical / Dental / Other (regular full-time employees only)ย
- Generous medical, dental, and vision benefits at different price points.ย
- Company-paid disability and life insurance.ย
- Company 401(k) plan including annual 3% safe harbor contribution.ย
- Free patient advocacy service that helps find care providers and resolve insurance queries.ย
- Free financial advising.ย
- Generous parental leave, sick leave, and vacation policies.ย
- Possibility to work remotely or with a flexible schedule when needed and approved.ย
- Company-paid cell phone with discounted accessories.ย
- 1-2-3 Give Program: 1. SRA will give $1,000 to a charity of your choice. 2. If you give an additional amount (up to $1,000), then 3. SRA will match that amount up to $1,000.ย
- Other discounted, employee-paid benefits including pet insurance, legal support, and voluntary life insurance.ย
SRA's mission is toย level up every day to protect our clients and their customers. This begins with our team members and their experience. SRA prides itself onย maintainingย a culture where team members have a shared sense of support and belonging, consistent withย our It'sย Personal company value. At SRA, we prioritize transparent career pathing, varied DEI programming and community groups, competitive benefits including mental health support, and an emphasis on a sustainable, healthy, and engaging work culture. SRA has twice been namedย a Bestย Place to Work by the Philadelphia Business Journal.ย
These Essential Functions, Requirements, and Skills are guidelines. If you are a candidate who does not meet this exact job description but canย demonstrateย excellent organization, attention to detail, professionalism, flexibility, and self-direction in your professional background, we hope you apply. SRA values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, and veterans to apply.ย ย
Salary Range: $90k - 130k