Senior Cloud Security Engineer

Summary

Join 3Cloud, a company that values experimentation, candid feedback, and collective growth, and become a Cloud Security Engineer. Lead the implementation and optimization of cloud security solutions in complex client environments. Mentor junior and mid-level engineers, collaborate with architects and stakeholders on secure cloud architectures, and design and implement security controls across Azure services. Monitor and respond to security incidents, support identity and access management initiatives, and develop and maintain security documentation. Contribute to automation efforts and participate in security assessments and audits. Stay current with emerging threats and regulatory requirements.

Requirements

• 5+ years of experience in cloud security engineering, with a focus on Microsoft Azure
• Hands-on experience with Azure security tools and services (Azure AD/Entra ID, Azure Policy, Azure Sentinel, Microsoft Defender suite, Microsoft Purview, Azure Firewall, etc.)
• Familiarity with third-party IAM and security tools (Okta and Okta integration with Entra ID, OneLogin, Splunk, etc.)
• Strong grasp of cloud security frameworks, risk assessment, and incident remediation techniques (HIPAA/HITRUST, FedRAMP, NIST, PCI DSS, CJIS, etc.)
• Familiarity with third-party firewalls such as Palo-Alto and Fortinet
• Working knowledge of Azure Networking, Compute, and Storage services
• Familiarity with scripting languages such as PowerShell, Python, or Bash
• Strong understanding of identity and access management in Azure environments
• Excellent problem-solving skills and attention to detail
• Strong communication and collaboration skills
• AZ-500: Azure Security Engineer Associate certification required

Responsibilities

• Lead the implementation and optimization of cloud security solutions across complex client environments
• Serve as a technical mentor and escalation point for junior and mid-level engineers
• Collaborate with architects and stakeholders to design scalable, secure, and high-performance cloud architectures
• Design and implement security controls across Azure services including Azure Policy, Microsoft Defender for Cloud, Sentinel, Purview, and DLP/AIP
• Collaborate with infrastructure and application teams to ensure secure deployment of Azure Compute, Networking, and Storage resources
• Monitor and respond to security incidents using Log Analytics and SIEM tools
• Support identity and access management initiatives, including IAM, PIM, and Access Packages
• Develop and maintain security documentation, standards, and best practices
• Contribute to automation efforts using PowerShell, Python, or Bash to streamline security operations
• Participate in security assessments, audits, and compliance initiatives
• Provide guidance on secure architecture and design patterns in Azure
• Stay current with emerging threats, vulnerabilities, and regulatory requirements

Preferred Qualifications

• Experience with Infrastructure as Code tools such as Terraform, Bicep, or ARM templates
• Familiarity with DevSecOps practices and CI/CD pipelines
• Exposure to multi-cloud environments is a plus
• SC-200: Security Operations Analyst Associate certification strongly desired
• SC-300: Identity and Access Administrator Associate certification strongly desired
• Hashicorp Terraform Associate certification desired

Benefits

• Full-time employment
• Remote in Philippines