Lead Cloud Security Engineer

at HuntSource
Location Mooresville, NC
Date Posted July 29, 2020
Category Default
Job Type Full-time


Lead Engineer, Cloud Security



HuntSource has the joy of partnering with a true technology company, a forward thinking and well-known corporation focused on truly expanding and strengthening its people and processes across all of security.  They have an innovative and collaborative approach with exceptional leadership and benefits!



The Lead Cloud Security Engineer will be responsible for providing technical advisory and direction to engineers supporting the design, implementation, and continual operation of security tools and services.  As an expert of translating business requirements and functional specifications, she/he will direct and implement robust enterprise security solutions to ensure strong protection of information assets.  This person will successfully facilitate monitoring, testing, and the evaluation of security assessments of systems while designing and leading the implementation of remediation solutions.

She/he must have advanced knowledge of security best practices and tools involving IAM and digital certificate management systems across a large enterprise.  This is a Technical Lead for project teams, establishing and maintaining programs to enable business operations compliant with regulatory industry standards.

This role will need to sit in the northern Charlotte, NC area.  Candidates have a time period to work remotely but will need to relocate.  There is an EXCELLENT relocation package!



  • Act as technical SME, guiding teams throughout implementation and management of InfoSec solutions – will define and oversee documentation of detailed standards (guidelines, processes, and procedures)
  • Continually educate others on current architectural guidelines and standards, driving efficiency through the design and implementation of InfoSec solutions
  • Participate in monitoring security systems, log reviews, and managing information security systems
  • Analyze system vulnerability scans, penetration tests and risk assessments; partner with business units to resolve identified vulnerabilities within established SLAs
  • Create and lead internal and external penetration validation testing, ensuring computer systems are updated relative to all OS, patches, and virus protection software
  • Facilitate effective collaboration with other technology teams including Engineering to design and implement remediation solutions
  • Identify, report, and lead technical support activities during incidents as part of Incident Response team
  • Lead technical evaluation of new security technologies, addressing current and future needs based on emerging threats and industry trends
  • Remain updated on exploits relevant to this specific industry/environment; research preventative measures
  • Solves complex cross-functional architecture/design and business problems; solutions are extensible; works to simplify, optimize, remove bottlenecks, etc.
  • Mentors and advises others and make recommendations to Business and Technology leadership to ensure alignment of infrastructure applications and data with current and future security standards
  • As needed, respond to escalated enterprise systems security issues, facilitating advanced diagnosis
  • Help oversee implementation of hardware/software changes in environments to ensure requirements are met
  • Provide input for security breach response procedures, as well as lead security breach response activities
  • Escalate problems to senior management/vendors as needed, leading break/fix activities
  • Reduce risk and exposure of applications by analyzing security tool output and identifying remediations
  • Complete complex custom enhancements to applications using secure coding techniques, reducing the threat of local or remote vulnerabilities
  • Evaluate applications (including Kubernetes, Containers, Infrastructure, & host platform) to identify threats


  • Bachelor’s Degree in Computer Science, CIS, Engineering, Cybersecurity, or related field is preferred; equivalent work or military experience in a related field is acceptable (Master’s Degree a plus)
  • Strong knowledge of Multi-cloud Technologies (strongest in GCP preferred + AWS and Azure)
  • Strong experience (7+) in technology system support, software development, or related field
  • 5+ years of experience with information security applications and systems; 4+ with database technologies
  • 5+ years of experience involved in applying SDLC to implement project solutions
  • 3+ years of experience within DevOps/DevSecOps environments
  • Strong experience designing application pipelines with secure configuration parameters to remove or reduce known threat vectors
  • Strong knowledge of Kubernetes
  • 3-4+ years of experience evaluating complex application and hosting environments to identify potential weaknesses and provide remediation plans to reduce risk
  • 5+ years of experience designing complex application and infrastructure systems to identify and recommend cybersecurity mitigations in code or infrastructure items (ex:  WAF, FW, etc.)
  • 5+ years of experience working with diverse application and infrastructure environments, providing technical guidance on threat reduction at both the application and supporting infrastructure layer

Preferred Qualifications

  • Proven experience working with defect or incident tracking software
  • Strong background writing technical documentation in a software development environment
  • Proven ability and experience leading teams, with or without direct reports
  • Strong knowledge of ITIL framework
  • Experience with Continuous Integration/Continuous Deployment (CI/CD) tools
  • 6+ years of experience in systems analysis, including defining technical requirements and performing high-level design for complex solutions
  • Relevant InfoSec Certifications:  CISSP, CISM, CRISC, CISA, OSCP, GPEN, or Cloud Security certifications such as GCP Professional Cloud Architect, GCP Professional Cloud Security Engineer, and/or AWS and Azure certs
Only registered members can apply for jobs.