Cloud Security Specialist (Mid-Senior)

This is a hybrid role offered in the following locations: Philadelphia, PA; Dallas, TX; Charlotte, NC

A leading wealth management firm is seeking a Cloud Security Specialist to enhance and enforce cloud security posture across multi-cloud environments. This individual will play a critical role in assessing and improving cloud security configurations, collaborating with security architects and SMEs, and implementing industry security standards. The ideal candidate will have expertise in Cloud Security, Vulnerability Management, Continuous Threat Exposure Management (CTEM), and Security Operations to drive proactive threat mitigation strategies.

Key Responsibilities:

• Lead cloud security assessments using CNAPP, CWPP, and CSPM tools to evaluate and enforce security controls across AWS, Azure, and GCP.
• Implement and optimize cloud security scanning tools (e.g., Aqua, Palo Alto Prisma, Wiz, CrowdStrike, Tenable Nessus, Qualys) to identify vulnerabilities and misconfigurations.
• Develop and enforce security guardrails, build-breaking policies, and enforcement controls to mitigate security risks effectively.
• Collaborate with SOC, Cyber Threat Intelligence, and Offensive Security teams to analyze cloud security threats and respond to zero-day events.
• Lead remediation efforts by managing risk acceptance, risk rating adjustments, and remediation SLAs to ensure compliance with industry security standards.
• Work with the Engineering Platform Team to integrate security automation into CI/CD pipelines and improve security processes.
• Oversee the VM lifecycle, ensuring vulnerabilities are prioritized, false positives are reduced, and time-sensitive escalations are addressed.
• Develop security findings fusion strategies and drive remediation ownership for security issues.
• Support internal and external audits, ensuring compliance with regulatory requirements and risk controls.
• Continuously enhance security processes through automation, process improvement, and scripting to improve cloud security posture.

Required Qualifications:

• 5+ years' experience experience in cloud security engineering with a strong understanding of core cloud services security across AWS, Azure, and GCP.
• Proficiency with security assessment tools such as CNAPP, CWPP, CSPM, and vulnerability scanning solutions.
• Strong knowledge of security compliance frameworks and industry security standards.
• Experience in remediation ownership, risk control strategies, and risk-based prioritization of vulnerabilities.
• Hands-on expertise in Kubernetes security and cloud-native security best practices.
• Familiarity with Security Operations Center (SOC), Cyber Threat Intelligence, and offensive security principles.
• Ability to work cross-functionally with security architects, SMEs, and engineering teams to implement effective security strategies.
• Strong problem-solving skills with an emphasis on continuous learning, process improvement, and automation.
• Experience in scripting and automation to enhance security workflows and remediation processes.
• Knowledge of risk acceptance, risk rating adjustments, and time-sensitive escalations in a cloud security environment.
• Certifications such as CISSP, CISM, CCSP, AWS Security Specialty, Azure Security Engineer, or GCP Professional Cloud Security Engineer a plus.
• Experience handling zero-day events and vulnerability analysis within large-scale enterprise environments preferred.

Interested applicants should submit a clear and concise resume that includes first name, last name, and contact information in order to be considered. Unfortunately, visa sponsorship is unavailable at this time.

This is a full-time position; Glocomms is unable to accommodate candidates seeking C2C/C2H arrangements.