Cloud Security Engineer (Mid-Level)

Cloud Security Engineer (Mid-Level) Location : Remote in Brazil (must)

Duration : 12+ Months

Seniority : Mid‑Level (4–6 years’ experience)

We are seeking a Cloud Security Engineer with hands‑on experience supporting cloud security tools and day‑to‑day security operations across GCP and AWS environments. This role will support our customers’ Cloud and Security teams by assisting with security monitoring, configuration, posture management, and compliance‑related activities.

This is a supporting engineering role. The focus is on maintaining and optimizing existing security tools and controls, not owning architecture design or leading net‑new initiatives.

• Supporting implementation and day‑to‑day management of cloud security controls in GCP using Security Command Center (SCC)
• Assisting with configuration, monitoring, and tuning of Wiz for cloud posture management and risk detection
• Supporting Palo Alto security tools, including cloud firewalls and Cortex XDR, with an emphasis on monitoring and alert response
• Assisting with AWS security support, including IAM configuration, logging, GuardDuty findings, and general security hygiene
• Supporting cloud security monitoring and incident response workflows in coordination with SOC and SecOps teams
• Helping validate security controls and configurations tied to HIPAA, HITRUST, and SOC2 requirements
• Assisting with policy enforcement, configuration reviews, and remediation activities based on established governance standards
• Contributing to documentation, runbooks, and knowledge transfer for cloud and security teams
• (Bonus) Assisting with M365 / O365 security configuration, identity controls, or conditional access policies

• 4–6 years of experience in cloud, infrastructure, or security engineering roles
• Hands‑on experience supporting GCP Security Command Center (SCC)
• Experience using Wiz for CSPM, risk identification, or posture management
• Exposure to Palo Alto security tools such as Prisma, Cortex XDR, or cloud firewalls
• Working knowledge of AWS security fundamentals (IAM, GuardDuty, logging, monitoring)
• Understanding of identity, access management, and cloud governance concepts
• Experience supporting compliance or regulated environments (HIPAA, HITRUST, SOC2, or similar)
• Familiarity with security monitoring, alert triage, and remediation workflows

• Experience with M365 security features such as conditional access or identity protection
• Exposure to container or workload security in cloud environments
• Basic experience with infrastructure‑as‑code or scripting (Terraform, Python, or PowerShell)