Cloud Security Engineer

Location: McLean, Virginia, United States


This position is no longer open.

Requisition Number: RR-0002729

Position Title:

External Description:

The health and safety of our employees is our top priority. Due to the pandemic, all our employees are working remotely and we will be conducting candidate interviews by video. This position will remain as a remote position once the COVID-19 crisis has abated.


Here’s what you’ll do in this role:

To design and implement new and enhanced security solutions and procedures to control and manage information assets and meet corporate and regulatory requirements. Cloud Security Engineer will support cloud security “blue team” functions by designing, implementing, and operationalizing capabilities for securing cloud infrastructure and workloads. Consultant will support the implementation of continuous security monitoring practices along with threat and vulnerability prevention, detection, and response capabilities on cloud assets.

  • Supports the implementation of runtime defenses to prevent cloud security technical risks and harden infrastructure as code, CI/CD pipeline hardening, container security, and infrastructure security.
  • Discerns security requirements for proactive defenses and runtime monitoring based on IaaS/PaaS/SaaS cloud deployment and environment integration use cases.
  • Understands cloud security architecture best practices such as identify and access management, secrets management, data classification, data protection and encryption, network security, infrastructure hardening, and logging and alerting.
  • Translates cloud security policies and standards into machine-readable, automated guardrails using cloud-native, open source, custom scripting, and commercial security tools. Assists with designing and implementing continuous monitoring practices to verify security properties at runtime with continuous feedback to teams responsible for triage, detect tracking, and remediation workflows.
  • Participates in preventative feedback loops with development teams and continuous improvement processes for preventing runtime vulnerabilities.
  • Assists with building automation for continuous cloud asset discovery and configuration management.
  • Assists with implementing cloud security posture management (CSPM) and workload protection capabilities (CWPP).
  • Conducts human-led processes for privileged access reviews, permission reviews to enforce least privilege, account de-provisioning, and credential management best practices.
  • Assists with developing and implementing monitoring and contextual incident response alerting patterns targeting cloud infrastructure and runtime assets
  • Serves as a consultant for strategic and business unit cloud security issues and problems. Evaluates problem, identifies the root causes, coordinates resources, determines temporary measures and/or permanent solutions and recommends and/or implements measures to restore full services. Escalates and works with Senior or Lead levels to resolve more complex situations.



Your qualifications:

  • Bachelor Degree in business administration, information systems, or related field
  • Minimum of 5 years of experience that demonstrates knowledge and skill of information security technology
  • Experience that demonstrates knowledge of cloud security practices and procedures, including risk assessment, authentication technologies, security monitoring, runtime defenses, and security attack patterns and practices
  • Experience with Azure or other cloud platforms
  • Strong research, analytical, and problem-solving skills
  • Strong planning and organizational skills
  • Highly developed verbal and written communication skills including preparing and presenting results, findings and alternatives and influencing management decision making based on the best available data
  • Knowledge of NIST CSF, Cloud Controls Matrix, SANS20, PCI DSS, and other Information Security requirements and frameworks
  • Experience with Azure native security services (Security Center, Defender, Sentinel, Policy, Monitor, Resource Manager, etc.)
  • Familiarity with Azure Resource Graph and scripting languages
  • Experience with Azure DevOps, Kubernetes, Splunk, and Tanzu/Pivotal Cloud Foundry technologies
  • Experience operating cloud security tools such as Check Point (Dome9), Aqua, and Prisma Cloud
  • Professional certification (CISSP, CISM, CRISC) or a reasonable expectation to obtain the certification. Microsoft Azure AZ-500 certification (or equivalent for another cloud platform) preferred.
  • Impeccable integrity. We are team-first at Celerity
  • A positive attitude. We can have fun while we work hard to solve business challenges
  • A heart for people. Excellent relationship-building skills across teams, peers, clients, vendors
  • A head for business. Nothing falls through the cracks on your watch
  • A passion for results. You strive to work complex issues with a strong sense of ownership and urgency.

Remote: 1

City: McLean

State: Virginia

Ext Portal Job Header:

Community / Marketing Title: Cloud Security Engineer

Company Profile:

Find your home at Celerity

At Celerity, authenticity isn’t just a buzz word. It’s a promise to each other and to our clients that we will bring our true, best selves to every interaction, to every solution. We hire for the person -- not for the role. And we believe in surrounding ourselves with not only the best and brightest innovative thinkers, but with those of highest integrity who are purpose-driven in all that they do. That's how we've come to be known by our clients as the consultancy that delivers impact, not ego.

Our culture attracts people who crave something greater than a job: meaningful opportunities in an environment of mutual respect. Every kind of talent is celebrated here. We look for people who share our values to be bold, innovative, and a transformative force for our clients. Through opportunities to shape skill sets and work with industry-leading consultants and exciting clients, including access to professional trainings and certifications that best align with your career goals, Celerity provides the freedom to grow both personally and professionally.

We offer a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace. Find out more at

EEO Employer Verbiage: <p><strong>We Are Celerity<br /></strong></p> <p> </p> <p>Founded in 2002, Celerity <span style="color:black;background:white">is a business and technology consulting firm dedicated to helping businesses respond to change—efficiently, quickly, and with focus on the customer. We specialize in digital experience, change management, operational efficiency, and the integration between them all.</span> Celerity is the premium solutions partner of Randstad Technology Group (RTG US).</p> <p> </p> <p>This is an extraordinary time to be in business. As digital transformation continues to accelerate and businesses are challenged to quickly respond, Celerity is leading the way — supporting transformative change for our clients and offering our professionals exciting career opportunities.</p> <p> </p> <p>We help businesses thrive in a changing environment. Join us.</p>

CountryEEOText_Description: We are proud to be an Equal Opportunity Employer. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Celerity is committed to providing veteran employment opportunities to our service men and women.