[Remote] Cloud Security Engineer
Note: The job is a remote job and is open to candidates in USA. Old Republic is a leading specialty insurer that operates diverse property & casualty and title insurance companies. The Cloud Security Engineer will play a key role in securing the company’s cloud environments by partnering with engineering, DevOps, and architecture teams to design secure cloud infrastructure and implement security controls.
Responsibilities
- Drive the security standards, best practice, and tool strategies for public and private cloud solutions
- Utilize CNAPP tooling, Wiz to monitor, assess, and enhance cloud security posture across environments
- Establish and enforce technical standards for cloud infrastructure, containers, and infrastructure-as-code (IaC)
- Design and implement solutions for vulnerability scanning against operating systems, container images, and IaC
- Assess the current security posture and future-state cloud architecture, recommending actionable paths to close gaps
- Design and implement solutions for vulnerability scanning of operating systems, container images, serverless workloads, and IaC
- Analyze cloud security configurations, generate vulnerability reports, and support remediation efforts with engineering teams
- Develop and apply security controls that protect cloud environments, workloads, identities, and data
- Implement solutions to continuously monitor the security posture of cloud services, CI/CD pipelines, containers, and IaC
- Serve as a subject matter expert regarding cloud security tools, applications, and processes
- Serve as the primary interface for cloud security to governance, compliance, and risk management team
- Assist the wider Information Security Engineering team with the development of the security tooling
- Build automations to detect and prevent cloud misconfigurations and ensure compliance with security baselines
- Keeping cloud infrastructure current, making recommendations, and continually improving cloud security technologies
- Implement solutions to monitor the security posture of cloud resources, CI/CD pipelines, Containers and IaC
- Support the wider Information Security Engineering team in developing and maintaining security tooling
- Serve as a subject matter expert for cloud security tools, architectures, and operational processes
- Perform additional duties as assigned
Skills
- 3-5 years of experience in cybersecurity, security operations, or security engineering roles
- Bachelor's degree in Computer Science, Information Systems, or a related field (or equivalent practical experience)
- Experience with at least one major cloud platform (AWS, Azure, or GCP) in a production environment
- Proven ability to perform cloud-based penetration testing and vulnerability assessments in modern cloud infrastructures
- Strong understanding of cloud security principles, risks, and mitigation strategies
- Practical experience with cloud security tooling (e.g., CSPM, CIEM, container scanning, secrets management)
- Experience implementing and maintaining logging, monitoring, and alerting solutions (e.g., Splunk)
- Proficiency in scripting for automation and operational efficiency
- Demonstrated ability to collaborate across cross-functional teams to design and implement scalable solutions
- Excellent communication skills with the ability to translate complex technical concepts into clear, business-friendly language
Company Overview