We are seeking a professional who thrives in a fast-paced, deadline-driven environment. The ideal candidate possesses strong problem-solving and decision-making abilities, ensuring efficiency and accuracy in every task. With a dedicated work ethic and a can-do attitude, you will take initiative and approach challenges with confidence and resilience. Excellent communication skills are essential for collaborating effectively across teams and delivering exceptional client service. If you are someone who demonstrates initiative, adaptability, and innovation, we invite you to join our team.

This role can be based in various offices, on a hybrid basis. This role reports to the Technology Security Manager.

Position Summary

The Cloud Security Engineer (Advisory) plays a key role within the Information Security organization, providing technical and advisory guidance to strengthen the security of the firms cloud environment. Primarily Microsoft Azure, with expanding presence in AWS and Google Cloud Platform (GCP), 21ViaNet, Microsoft GCC.

This role serves as a security advisor to the Cloud Services, Identity and Access Management (IAM), and other technology teams, focusing on secure configurations, architectural reviews, and compliance alignment. The engineer applies past technical experience in cloud security to review, recommend, and guide, rather than directly build or operate, cloud controls.

In addition to their cloud advisory duties, the Cloud Security Engineer will actively support Information Security operations by participating in the on call rotation and contributing to incident response activities, including analysis and containment guidance for cloud related events.

Key Responsibilities

• Partners with Cloud Services and IAM teams to ensure cloud configurations and identity controls meet firm security standards and compliance requirements
• Participates in cloud architecture and design reviews, providing actionable recommendations that balance security, usability, and performance
• Assists teams in interpreting and applying approved cloud security standards, policies, and baseline configurations
• Provides advisory support for cloud security posture management (CSPM) findings helping to prioritize remediation and validate risk mitigation strategies
• Offers guidance on logging, monitoring, and threat detection practices using Azure Monitor, Log Analytics, and native security tools
• Supports data protection efforts by advising on encryption, information classification, and use of Microsoft Purview or equivalent tools
• Collaborates with Information Governance, Risk, and Compliance teams to support audits and provide evidence of effective cloud security controls
• Participates in the Information Security on call rotation, responding to incidents and assisting with cloud related investigations and remediation efforts
• Maintains awareness of new cloud security features and shares practical recommendations to improve security posture across all cloud platforms
• Contributes to internal technical documentation, such as standards, guidelines, and best practice advisories for cross team use
• Performs other information security related tasks as assigned by management, supporting departmental objectives in risk reduction and security operations
• Participates in the firms annual policy and sop review process
• Participates in the firms ISO certification process for cloud (ISO27017)

Qualifications

Skills & Competencies

• Working knowledge of AWS and GCP foundational security concepts (IAM, networking, encryption, monitoring)
• Familiarity with CSPM/DSPM tools (e.g., Microsoft Defender for Cloud) and cloud compliance frameworks (CIS, NIST, CSA, ISO)
• Strong understanding of identity and access management in cloud environments (RBAC, conditional access, privilege management)
• Sound knowledge of cloud logging and telemetry tools; ability to advise on effective monitoring configurations
• Solid technical acumen to support incident response and analysis involving cloud workloads
• Clear and confident communication skills, especially when conveying technical recommendations under time sensitive conditions
• Detail oriented and able to collaborate effectively across multiple technology teams
• Creates and delivers presentations to various audiences
• Appears on camera for meetings with colleagues and vendors
• Performs other duties as deemed appropriate

Education & Prior Experience

• Bachelors degree in computer science, Information Technology, Cybersecurity, or equivalent experience
• Typically, 57 years of experience in cloud engineering, information security, or infrastructure roles, with significant exposure to Azure security
• Certifications such as AI-900, AZ 500, SC 200, SC 300, or AWS Certified Security preferred
• Proven experience implementing or advising on cloud security controls, preferably in Azure environments
• Experience supporting incident response and on call functions within an information security context strongly desired
• Experience working within regulated, legal, or professional services environments preferred but not required
• Proficient in incorporating A.I. tools (GenAI, AI Assistants, Agentic AI, etc.) in day-to-day work