Cloud Security Engineer

Toyota Motor Sales, U.S.A., Inc.

$100K — $130K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Computer Science, Engineering, Information Systems, or a related field (or equivalent experience).
  • 4+ years in cloud security, SecOps, cloud identity, or security engineering roles.
  • Hands-on experience securing workloads on Azure platforms.
  • Deep understanding of cloud identity models including RBAC, managed identities, and conditional access.
  • Experience with Infrastructure-as-Code and security controls implementation.
  • Familiarity with Azure security tools like Defender for Cloud, Sentinel, and Log Analytics.
  • Knowledge of contemporary cloud security principles such as Zero Trust and least privilege.

Responsibilities

  • Define and evolve cloud security baselines for Azure and on-premises.
  • Design and enforce secure access patterns using least privilege principles.
  • Implement policy-as-code guardrails with Azure Policy and Infrastructure-as-Code.
  • Monitor cloud security posture and set alerts with Defender for Cloud and Sentinel.
  • Partner with Engineering and Operations to address vulnerabilities promptly.
  • Support readiness for releases and operational processes with security evidence.
  • Validate backup and disaster recovery procedures as part of operational readiness.

Benefits

  • Health, Dental, and Vision Insurance.
  • 401(k) plan with company match.
  • Paid vacation and holidays.
  • Opportunity for paid volunteer time off.
  • Tuition reimbursement for further education.
  • Support for professional memberships, conferences, and subscriptions.
  • Invitation to company meetings and events.
Full Job Description
The Senior Cloud Security & Identity Engineer (SecOps) is a senior individual contributor responsible for defining, enforcing, and monitoring cloud security and identity guardrails to ensure cloud workloads are secure, compliant, resilient, and ready for customer usage.

Operating within the Cloud Center of Excellence (CCoE) and in close partnership with Software Excellence & Enablement (SEE), this role builds security into the delivery system through consistent baselines, identity patterns, policy-as-code, and evidence-based verification. The SecOps Engineer supports Release Management and Operations by providing clear security readiness signals, continuous monitoring, and actionable insights.

This role defines guardrails and validates outcomes-it does not replace application ownership or operations responsibility. Success is measured by security posture, reduced risk, readiness without exception, and operational credibility, not by the volume of findings.

Job Functions:
  • Define, maintain, and evolve cloud security baselines across both Azure and On-Prem environments.
  • Design and enforce secure workload identity and access patterns using least privilege principles.
  • Implement and maintain policy-as-code guardrails using Azure Policy and Infrastructure-as-Code pipelines.
  • Monitor cloud security posture and configure alerts using Defender for Cloud, Sentinel, and Log Analytics.
  • Partner with Engineering and Operations to remediate vulnerabilities in a timely and sustainable manner.
  • Support Release Readiness, Operational Readiness, and Cloud Activation through objective security evidence.
  • Validate backup, restore, and disaster recovery results as part of operational readiness.
  • Support security incident triage, investigation, and root-cause analysis for cloud workloads.
  • Reduce noise by tuning alerts and focusing on high-signal security indicators.
  • Provide clear, practical guidance to engineering teams that enables secure delivery without friction.
  • Monitor drift from security standards and drive remediation with clear owners and timelines.
  • Provide transparent, factual summaries of cloud security posture, trends, and risks to leadership.
  • Build a culture of security awareness and mentor developers and leaders in the principles of software security.


Travel Requirements:
  • 20% overnight travel (Travel expenses paid by Toyota Automated Logistics)


Required Qualifications and Preferred Skills:
  • Bachelors Degree in Computer Science, Engineering, Information Systems, or a related technical field; equivalent experience may be considered
  • 4+ years Experience in cloud security, SecOps, cloud identity, or security engineering roles
  • Strong hands-on experience securing cloud workloads in Azure environments.
  • Deep knowledge of cloud identity models, including managed identities, service principals, RBAC, and conditional access.
  • Experience implementing security controls through Infrastructure-as-
  • Familiarity with Azure Policy, Defender for Cloud, Sentinel, and Log Analytics.
  • Understanding of modern cloud security principles such as Zero Trust and least privilege.
  • Experience supporting incident response and resilience validation.
  • Ability to communicate security expectations clearly and pragmatically.
  • Experience embedding security into delivery processes rather than retrofitting controls.
  • Certifications such as AZ-500, SC-300, SC-100, or equivalent experience (preferred, not required).
  • Must be eligible to work in the USA long term without sponsorship.
  • Employees must follow all information security policies, protect confidential data, complete required training, and report any suspected security incidents to support our information security controls.


In addition to exciting work at a growing company, we offer the following benefits:
  • Health, Dental, and Vision Insurance
  • 401(k) Retirement Plan with a company match
  • Vacation / Holiday Pay
  • Paid Volunteer time off
  • Tuition Reimbursement
  • Professional Associations, Conferences and Subscriptions
  • Company Meetings & Events


Toyota Automated Logistics does not work with outside recruiting agencies. No solicitation phone calls please.

Similar Jobs

More Jobs at Toyota Motor Sales, U.S.A., Inc.

  • Automotive Sales Manager
    $70K — $95K *
    Bourbonnais, IL 60914 (Kankakee County)
    Manufacturing & Automotive
    In-Person
  • Cloud Security Engineer
    $100K — $130K *
    Meridian, ID 83642 (Ada County)
    Information Technology
    In-Person
  • Cloud Security Engineer
    $100K — $130K *
    Indianapolis, IN 46227 (Marion County)
    Information Technology
    In-Person
  • Cloud Security Engineer
    $100K — $130K *
    Louisville, KY 40245 (Jefferson County)
    Information Technology
    In-Person
  • Site Manager
    $75K — $95K *
    Indianapolis, IN 46227 (Marion County)
    Manufacturing & Automotive
    In-Person

More Information Technology Jobs

Find similar Cloud Security Engineer jobs: