Lead Cloud Security Engineer - Cream City Cyber
Milwaukee, WI 53244
About the Job
Lead Cloud Security Engineer
Job Description:
Summary:
We are seeking a highly skilled to head our cloud security initiatives. This team leader role requires an expert in securing cloud environments, specifically and , with substantial experience in hybrid infrastructures. The Lead Cloud Security Engineer will be responsible for defining the strategic direction of our cloud security posture, leading a team of security professionals, and ensuring that robust security measures are in place across all cloud and on-premises systems.
Key Responsibilities:
Strategic Planning and Leadership:
• Develop and execute a comprehensive cloud security strategy aligned with organizational goals.
• Lead and mentor a team of cloud security engineers, providing guidance and professional development.
• Serve as the primary point of contact for all cloud security matters.
Cloud Security Architecture and Governance:
• Design and oversee the implementation of secure architectures for Azure and GCP environments.
• Establish and enforce security policies, standards, and best practices across cloud platforms.
Integration of Cloud and On-Premises Security:
• Ensure seamless integration of security controls between cloud services and on-premises infrastructure.
• Lead efforts to modernize legacy systems and migrate to secure cloud solutions when appropriate.
Create transformational roadmaps using a capability maturity model/phased approach to take business into the cloud.
Not that you should put this in here, but generally with consulting you won't necessarily drive the whole thing all the time, but maybe create those approaches that business can then implement on their own w/ their own staff after you're gone.
Risk Management and Compliance:
• Identify, assess, and prioritize security risks across cloud and on-premises environments.
• Ensure compliance with relevant regulations and standards (e.g., ISO 27001, NIST, PCI DSS, GDPR).
• Coordinate with internal and external auditors during security assessments.
Incident Response and Threat Intelligence:
• Develop and oversee incident response plans for cloud environments.
• Lead investigations into security incidents and coordinate remediation efforts.
• Utilize threat intelligence to proactively adjust security measures.
DevSecOps and Automation Leadership:
• Champion the integration of security into DevOps practices, promoting a DevSecOps culture.
• Lead the automation of security processes and controls using advanced tools and methodologies.
Stakeholder Engagement and Communication:
• Collaborate with executive leadership to communicate security strategies and risks.
• Work with cross-functional teams to ensure security requirements are understood and implemented.
• Represent the organization in security forums and industry events.
Continuous Innovation and Improvement:
• Stay abreast of emerging security technologies, threats, and industry trends.
• Drive innovation by evaluating and implementing new security tools and solutions.
Be relentless about continual risk reduction through iterative improvement across all facets of hybrid cloud security.
Required Qualifications:
• Bachelor’s degree in Computer Science, Information Security, or related field; a Master’s degree is preferred.
8+ years of experience in information security, with at least focused on cloud security.
• Proven leadership experience managing security teams and projects.
• Demonstrable expert knowledge of and security services and architectures.
• Extensive experience with on-premises infrastructure security and hybrid environments.
• Strong understanding of security frameworks and regulatory compliance requirements.
• Proficiency in security risk management and mitigation strategies.
Preferred Qualifications:
• Advanced certifications such as , or equivalent.
• Experience in large-scale cloud migrations and transformation projects.
• Knowledge of Zero Trust security models and their application in cloud environments.
• Familiarity with enterprise security tools and platforms (e.g., CASB, DLP, PAM solutions).
Skills and Competencies:
Strategic Leadership: Ability to define and drive the cloud security vision and strategy.
Technical Mastery: Deep expertise in cloud and on-premises security technologies and architectures.
Risk Management: Proficient in identifying risks and implementing effective mitigation strategies.
Project Management: Strong organizational skills to manage multiple initiatives and deadlines.
Communication and Influence: Exceptional ability to communicate complex security concepts to diverse audiences, including executive leadership.
Collaboration: Proven ability to work collaboratively across departments and with external partners.
Innovation: Creative thinker who can introduce new ideas and technologies to enhance security.
Integrity and Professionalism: Commitment to ethical practices and maintaining the highest standards of security.