Job Summary The Cloud Security Engineer designs, deploys, and operates a secure cloud infrastructure that aligns with business goals. This advanced role supports innovation by enabling secure, scalable, and resilient cloud applications. The engineer applies deep technical expertise in cloud architecture, security operations, and automation to protect systems and data across SaaS, IaaS, and PaaS environments. Responsibilities Design, implement, and maintain cloud security policies and standards across the cloud. Assist in the development and maintenance of cloud security policies, standards, and baseline configurations. Implement approved cloud security controls using established templates, tools, and procedures. Conduct routine compliance checks of cloud resources and elevate identified security gaps. Support policy enforcement through cloud-native security tools and configuration monitoring. Partner with engineering teams to apply security requirements during cloud deployments and audits. Conduct ongoing threat assessments to identify, analyze, and mitigate security risks. Monitor cloud security alerts, logs, and findings to identify potential threats or suspicious activity. Assist in performing routine threat assessments using established tools, playbooks, and risk criteria. Analyze identified risks to determine potential impact and recommend mitigation steps under senior guidance. Support remediation efforts by tracking issues, validating fixes, and documenting outcomes. Maintain threat assessment records and contribute evidence for risk reporting, audits, and compliance reviews. Collaborate with cross-functional teams (engineering, DevOps, compliance) to embed security at every layer of the cloud stack. Participate in cross-functional meetings with engineering, DevOps, and compliance teams to communicate cloud security requirements and standards. Support secure cloud deployments by reviewing configurations and changes against established security guidelines. Assist teams in addressing security findings by providing guidance, documentation, and approved remediation steps. Help integrate security checks and controls into CI/CD pipelines using existing tools and processes. Document collaboration outcomes, security decisions, and follow‑up actions for audit, compliance, and tracking purposes. Implement and manage cloud security tools to monitor, detect, and prevent security threats. Assist in the deployment and configuration of approved cloud security tools in accordance with documented standards and procedures. Monitor security tool dashboards, alerts, and reports to identify potential threats or policy violations. Perform initial analysis of security findings and escalated incidents or anomalies following established runbooks. Support ongoing maintenance of cloud security tools, including updates, access management, and health checks. Document tool configurations, findings, and actions taken to support incident response, audits, and compliance reporting. Communicate security requirements, risks, and best practices clearly to both technical and non‑technical stakeholders. Communicate established cloud security requirements and standards to technical teams during reviews, deployments, and issue resolution. Assist in explaining identified security risks and findings to non‑technical stakeholders using approved messaging and documentation. Prepare and maintain basic security documentation, summaries, and status updates for audits, assessments, and team reporting. Respond to routine security questions from internal teams and escalated complex issues to senior security staff. Support security awareness efforts by sharing best practices, guidelines, and lessons learned across cloud teams. This job requires on‑site work at a Mary Kay facility. Skills & Experience Experience: 3+ years of experience in Cloud Security Education: Bachelor/University Degree in Computer Science or Information Security Certifications/Licenses: AWS Certified Solutions Architect Associate or AWS Certified Solutions Architect Professional Language: Fluent reading, writing, and speaking in English. All resumes need to be submitted in English. Additional Skills & Abilities: Scripting and Automation: Python, Bash, PowerShell, etc. Familiarity with Infrastructure as Code (IaC): Tools like Terraform or CloudFormation for automating security provisioning. Problem Solving and Critical Thinking. Communication Skills. Ubicaciones de trabajos Mexico Main Office Puesto Sistemas y Tecnología de Información Viaje No #J-18808-Ljbffr