B

Cloud Security Principal Engineer

Buckeye Global
Remote
$85 - $95 USD yearly

Job Title: Cloud Security Principal EngineerLocation: Philadelphia, PADuration: 6+ months of contract (temp to perm)Hybrid - 80% remote, 20% onsite

Job Description

  • CISSP certifications Required

  • Prioritizing candidates with could security certifications

  • The Cloud Security Engineer will play a pivotal role in the cloud security service delivery model.

  • The role combines deep technical expertise, collaboration across internal and external teams to design, implement, and optimize cloud security controls and service lines.

  • The candidate will support both project-based and continuous security initiatives, focusing on securing client's cloud migration, supporting cloud security tool optimization, cloud security processes for the Information Security team, cloud/hybrid controls, automation, and risk-driven security outcomes.

  • Proven experience in securing a multi-cloud environment.

  • Proven experience with Identity and access management in the cloud

  • Proven experience with all security service lines in a cloud environment and the supporting security tools and processes to be successful.

  • Demonstrate collaboration with internal stakeholders, vendors, and supporting teams to design, implement, and maintain security technologies across network, endpoint, identity, and cloud infrastructure.

  • Drive continuous improvement and coverage of cloud security controls by validating alerts, triaging escalations, and working with the MSP to fine-tune detection and prevention capabilities.

  • Lead or support the development of incident response plans, engineering runbooks, tabletop exercises, and system hardening guides.

  • Ensure alignment of security architectures with client's policies, standards, and external frameworks such as NIST SP 800-53, HIPAA, PCI-DSS, CISA ZTMM, CIS Benchmarks, and Microsoft CAF Secure Methodology, AWS CAF, AWS Well Architected framework, Google CAF

  • Participate in design and governance forums to provide security input into infrastructure, DevSecOps, and cloud-native application strategies.

  • Assist with audits, compliance assessments, risk remediation plans, and evidence collection with internal compliance and external third-party stakeholders.

  • Mentor and support junior InfoSec engineers through documentation, training, and peer reviews.

  • Hands-on experience in security engineering, systems integration, and cloud architecture (Azure preferred).

  • Proficiency in tools and domains such as: EDR (Microsoft Defender), SIEM (Sentinel or Splunk), CSPM (e.g., Wiz), IAM (Entra ID), VPNs/NGFWs, NAC, and encryption protocols.

  • Demonstrated understanding of secure configuration management, automation pipelines (e.g., Terraform, PowerShell), and vulnerability management platforms.

Skills:- Demonstrates comprehensive knowledge and understanding of Information security principles, general and IT controls (e.g., access controls, risk management, change management, cloud security) and related information security policies and procedures.

  • Exhibits knowledge of industry regulatory standards and accreditation requirements or control frameworks (HIPAA, PCI, Joint Commission, NIST, Red Flags, ISO 27000 series).

  • Comprehensive knowledge of information security regulations, standards and leading practices, including understanding of EHR, cloud frameworks, identity access controls.

  • Good knowledge of basic database query techniques & data mining to analyze data or other related database functionality.

  • Knowledge of Microsoft Active Directory, UNIX, and Clinical Applications a plus.

  • Experience implementing application-level security in clinical and financial systems (e.g., Epic, Lawson). ERP experience a plus.

  • General understanding of networking and communication techniques including WANs, LANs, Internet, Intranet, protocols, such as TCP/IP and their impact on security.

  • Microsoft, UNIX, Lawson, and Clinical Applications,

  • Experience with industry standard SDLC methodologies; hands-on experience in Project Server methodologies, PMO project management skills, including use of MS productivity tools (Access, Word, PowerPoint, Visio, Project).

  • Experience with risk management frameworks.

  • Information Security Requirements

  • Understand and comply with all enterprise and IS departmental information security policies, procedures and standards.

  • Support the integration of information security in the development, design, and implementation of Hospital Technology Resources that process, transmit, or store client information.

  • Support all compliance activities related to state, federal regulatory requirements, healthcare accreditation standards, and all other applicable regulations that govern the use and disclosure of patient, financial, or other confidential information.

Education:- Required: Bachelor's Degree

  • Preferred: Bachelor's Degree in Computer Science, Information Systems, or related field

Required Experience:- At least twelve (12) years industry related experience, including experience in one to two IT disciplines (such as technical architecture, network management, application development, middleware, information analysis, database management or operations) in a multitier environment.

  • At least six (6) years experience with information security, regulatory compliance and risk management concepts.

  • At least three (3) years experience with Identity and Access Management, user provisioning, Role Based Access Control, or control self-assessment methodologies and security awareness training.

  • Experience with Cloud and/or Virtualization technologies.

Salary info:

$85 - $95 / hr

Apply now
Share this job