Cloud Security Engineer - Goldfein Claims Management, LLC

Key Responsibilities

• Design and enforce security controls across AWS and Azure cloud infrastructure, including encryption standards, key management, and data protection aligned to SOC 2 and GLBA requirements.
• Implement and maintain cloud security posture management tools, continuously monitoring for misconfigurations and policy violations.
• Lead vulnerability management initiatives, coordinating scans, triage, and remediation across cloud and on‑prem environments.
• Develop and maintain security automation workflows to streamline incident response, patching, and compliance reporting.
• Collaborate with engineering and IT teams to embed security best practices into development pipelines and operational processes.

Requirements

• 5+ years of experience in cloud security engineering, with deep knowledge of AWS and Azure security services.
• Proven expertise in IAM, encryption, key management, and vulnerability management.
• Hands‑on experience with security automation tools (e.g., Terraform, CloudFormation, Sentinel, or similar).
• Strong understanding of SOC 2, GLBA, and related compliance frameworks.
• Excellent communication skills and ability to work effectively in a fast‑paced, cross‑functional environment.