Job Posting End Date07-13-2026
Please note the job posting will close on the day before the posting end date.
Job Summary Part of a larger team delivering high quality technology solutions to the business. Design, develop and install software solutions. Build high-quality, innovative and fully performing software in compliance with internal architecture, development & design standards & best practices. Design, modify, develop, write, implement and troubleshoot software programming applications. Support and/or install software applications. Participate in the testing process through test review and analysis, test witnessing and certification of software. Works within a Waterfall or Agile methodology/framework based team. Collaborates heavily with Project Management, Business Analyst and Infrastructure Job Families.
Job DescriptionAs an Advanced Cloud Security Engineer, you will serve as a technical anchor for our enterprise cloud defense strategy. Your primary mission will be engineering, implementing, and monitoring robust security guardrails within our Amazon Web Services (AWS) ecosystems, while providing critical secondary security engineering support across our multi-cloud footprint, including Microsoft Azure, Google Cloud Platform (GCP), and Oracle Cloud Infrastructure (OCI).
In this role, you won't just be managing alerts-you will be treating infrastructure as code, embedding security directly into the CI/CD pipeline, and defining policy as code to enforce continuous compliance. Additionally, you will play a key role in managing and optimizing our third party SSE (Security Service Edge) platform to seamlessly secure data, web, and cloud access across AWS, Azure, and GCP environments.
What you'll do:Essential Job Functions & TasksResponsibilities include the following related to securing cloud compute, network, storage, and end user infrastructure:
- AWS Security Engineering: Design, build, and maintain enterprise-grade security controls utilizing third party SSE and native AWS security services.
- Multi-Cloud Support: Provide primary to AWS / secondary security engineering, posture management, and threat detection support for Azure, GCP, and OCI environments.
- DevSecOps & Automation: Work with our Cloud Engineering group to help operationalize Infrastructure as Code (IaC) and Policy as Code (PaC) to automate security guardrails, vulnerability scanning, and compliance checks.
- SSE Management: Architect and maintain policies within the third party SSE platform to protect corporate data and govern cloud applications across our primary cloud environments.
- Incident Response & Threat Hunting: Partner with our SOC to investigate cloud-specific security incidents, develop automated remediation playbooks, and conduct threat-modeling exercises.
Preferred Capabilities and QualificationsCandidates must demonstrate a deep, hands-on technical understanding and operational compatibility with the following:
- Native AWS Security Ecosystem: Comprehensive understanding of AWS security services, including but not limited to: AWS IAM (complex policies, permission boundaries, organizations), AWS GuardDuty, AWS Security Hub, AWS Config, AWS CloudTrail, KMS, Macie, and Network Firewall.
- Multi-Cloud Fundamentals: Functional technical competency and architectural understanding of security controls in Azure (Entra ID, Microsoft Defender for Cloud), GCP (Security Command Center, IAM), and OCI (Identity and Access Management, Cloud Guard).
- Automation & Code: Strong proficiency in IaC tools (specifically Terraform or AWS CloudFormation) and a deep understanding of PaC frameworks (such as Open Policy Agent/Rego, AWS CloudFormation Guard, or HashiCorp Sentinel) to enforce compliance before deployment.
- Enterprise Networking & SASE/SSE: Foundational understanding of cloud routing, VPC/VNet peering, CASB (Cloud Access Security Broker), Secure Web Gateway (SWG), and Zero Trust Network Access (ZTNA) concepts.
The ideal candidate will stand out if they possess the following advanced capabilities:
- SASE/SSE Experience: Direct, hands-on experience configuring, tuning, and deploying a SASE/SSE platform (CASB, SWG, DLP) across AWS, Azure, and GCP.
- Advanced IaC/PaC Implementation: Proven track record of building automated compliance pipelines that block non-compliant code and infrastructure from being merged into production.
- Cloud Security Architecture: Experience shifting organizations from reactive security monitoring to proactive cloud security posture management (CSPM) and continuous compliance.
- Industry Certifications: Highly preferred certifications include:
- AWS Certified Security - Specialty
- AWS Certified Solutions Architect - Professional
- CCSP (Certified Cloud Security Professional) / CISSP
- Other AWS, Microsoft Azure, Google Cloud Platform, or Oracle Cloud Infrastructure certifications.
- CCIPS, CCSP, CERT Incident Response Process Professional
- GIAC Certifications (e.g., GCIH, GCIP, GSEC, GREM)
- Other vendor-specific cloud certifications
What We're Looking For:Solutions Engineer Staff (SG9) Education requirements are listed below:
- Bachelor's degree in computer science, engineering, or related technical field is required.
Work Experience requirement listed below:
- 8 years of relevant work experience is required. An equivalent combination of education and related experience may be considered.
Solutions Engineer Lead (SG10)Education requirements are listed below:
- Bachelor's degree in computer science, engineering, or related technical field is required.
Work Experience requirement listed below:
- 10 years of relevant work experience is required. An equivalent combination of education and related experience may be considered.
What You'll Get:Base Salary from $116,255.00 - $177,503.00 /year. In addition to a competitive compensation, AEP offers a unique comprehensive benefits package that aims to support and enhance the overall well-being of our employees.
Compensation DataCompensation Grade:SP20-010
Compensation Range:$116,255.00 - $177,503.00
The Physical Demand Level for this job is: S - Sedentary Work: Exerting up to 10 pounds of force occasionally (Occasionally: activity or condition exists up to 1/3 of the time) and/or a negligible amount of force frequently. (Frequently: activity or condition exists from 1/3 to 2/3 of the time) to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.
Hear about it first! Get job alerts by email. Log in to your Candidate Home Account today! If you don't have an account, you can create one.