"Alerted.org

Job Description

Insight Global is looking for a Cloud Security Controls Engineer for one of our large financial clients. This person will be responsible for managing cloud security tools and leading end-to-end controls development and pre-production deployments across multi-cloud platforms. They’ll support existing processes to help mature cloud security posture management, work closely with internal cloud security engineering teams to ensure code aligns with security requirements, support end-to-end UAT, and implement code into cloud environments. The role also includes maintaining documentation that accurately reflects the current cloud control environment for review by oversight organizations including Audit, Compliance, Operational Risk, and Regulators. This role will require 5-days/40 hours on-site in either Chicago, Denver, or Charlotte.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

Strong development background in Python, Java, or similar languages with the ability to build solutions from scratch

5+ years of experience in cloud security across AWS, Azure, or GCP within large enterprise environments

Hands-on experience with cloud infrastructure and platform deployment using Policy-as-Code (PaC) and CI/CD pipelines

Familiarity with cloud-native security tools and services, including Azure Security Center, AWS Security Hub, or Google Cloud Security

Proven ability to configure cloud security services and lead end-to-end UAT testing with stakeholders

Deep understanding of SaaS, IaaS, PaaS models and cloud service adoption strategies

Experience aligning cloud security with frameworks like CIS, NIST, ISO, and tools like CSPM, SSPM, CIEM, CWPP

Ability to build and execute test cases for proof-of-concept evaluations with vendor solutions

Knowledge of industry standards from Cloud Security Alliance, ISC2, SANS, and others for securing cloud applications and infrastructure Hands-on experience deploying native cloud security services and the WIZ platform in multi-cloud environments (CNAPP), including POCs and troubleshooting Wiz.io challenges

Experience with container security and orchestration tools such as Docker, Kubernetes, and Cloud Foundry

Familiarity with configuration and release management tools used in CI/CD pipelines (e.g., Ansible, Chef, Puppet), especially Horizon Jenkins for Azure and GitHub for AWS

Scripting experience (Python, PowerShell, Bash) for automating UAT testing and policy validation

Exposure to security technologies like SIEM, IDS/IPS, WAF, endpoint protection, and threat intelligence

Understanding of security and privacy frameworks such as NIST CSF, CIS, ISO 27001, and MITRE

Strong communication skills for translating technical security details to non-technical audiences and producing documentation

Experience working with oversight organizations (Audit, Compliance, Risk, Regulatory) or within the financial industry