Hire Talent

Job Listing

Cloud Security Engineer

  • Contract
  • Colombia

Seeking a Cloud Security Engineer to strengthen security across AWS, Azure, and GCP. This role focuses on CSPM/CNAPP, cloud-native security controls, identity security, and vulnerability/risk management. You’ll work with Cloud Engineering, AppSec, GRC, and Infrastructure teams to improve visibility, enforce controls, and drive remediation of cloud risks.

Must‑Have Qualifications

Cloud Security & CSPM/CNAPP

  • Hands‑on experience with CSPM/CNAPP tools (e.g., Wiz) to identify misconfigurations, identity risks, exposure paths, and vulnerable workloads.
  • Strong understanding of cloud security best practices across AWS, Azure, and GCP.
  • Ability to onboard and validate cloud accounts for tagging, logging, and security coverage.

Risk Analysis & Remediation

  • Proven ability to analyze cloud security findings, prioritize true risk, and drive remediation of high‑severity issues.
  • Experience collaborating with engineering teams to resolve misconfigurations, identity risks, and exposure points.

Identity, Network & Workload Security

  • Knowledge of IAM roles, trust relationships, privilege escalation paths, and identity risk reduction.
  • Familiarity with cloud networking concepts, security groups, firewall rules, and exposure management.
  • Understanding of vulnerability visibility for cloud workloads, containers, and serverless functions.

Incident Response

  • Experience investigating cloud security alerts involving identity misuse, public exposure, or misconfiguration.
  • Ability to analyze logs, assess impact, and coordinate response with SOC/IR teams.

Governance, Reporting & Automation

  • Ability to maintain CloudSec metrics, dashboards, and executive‑level reporting.
  • Experience supporting audits, compliance evidence requests, and cloud control validation.
  • Familiarity with automation opportunities using cloud APIs, native services, or IaC.

Professional Skills

  • Operates independently with strong technical judgment and risk‑based decision‑making.
  • Strong collaboration skills and ability to influence without authority.
  • Balances security requirements with business and operational needs.

Nice‑to‑Have Qualifications

  • Experience with infrastructure‑as‑code (Terraform, CloudFormation, ARM/Bicep).
  • Background in Application Security, DevSecOps, or platform engineering.
  • Certifications such as CCSP, AWS/Azure/GCP Security Specialty, or GIAC Cloud‑focused credentials.
  • Experience building automation for remediation or reporting workflows.
  • Familiarity with PCI DSS, NIST CSF 2.0, CIS Benchmarks, or similar frameworks.

Apply now

Job details

  • Job Category: Contract
  • Job State: South America Remote
  • Job Country: South America
  • Job City: Colombia