Cloud Security Engineer

Sonepar Management Group (SMG) supports our Sonepar brands (i.e. operating companies) in the US through a shared services model. These services include, but are not limited to: human resources, finance, digital enterprise, supply chain, vendor relations, marketing, legal, and communications. The SMG teams enable our brands to do business in their local regions while taking advantage of the scale and collective resources of a global enterprise.

SMG fosters an inclusive and supportive culture. We offer leadership and development programs to help you reach your career goals. Our associates share in our collective achievements, and we firmly believe that Sonepar is “Powered by Difference.” By driving technology and innovation, enabling paths to success, and caring about our people and their families, we have built a workplace where you can build a fulfilling career.

We are seeking Cloud Security Engineers at the Engineer and Senior Engineer level positions. As a Cloud Security Engineer, you will play a key role in securing cloud environments, implementing best security practices, and responding to threats and vulnerabilities across cloud platforms (AWS, Azure, GCP). You will work closely with security architects, DevOps teams, and compliance specialists to enhance cloud security posture and automate security operations. This role requires hands-on experience with cloud security tools, policies, and frameworks, making it ideal for individuals looking to deepen their expertise in cloud security engineering.

These positions are based in our Irving, Texas or Denver, Colorado location, hybrid schedule.

• Monitor, detect, and respond to security threats in cloud environments using SIEM and cloud-native security tools.
• Investigate security incidents, conduct root cause analysis, and implement remediation strategies.
• Work with Security Operations Center (SOC) teams to improve cloud security monitoring and threat intelligence capabilities.

• Implement security controls and best practices across multi-cloud environments (AWS, Azure, GCP).
• Assist in designing secure cloud architectures, enforcing Identity and Access Management (IAM) policies, and configuring network security (firewalls, VPCs, security groups).
• Deploy encryption, key management, and data loss prevention (DLP) strategies to safeguard sensitive data.

• Ensure cloud environments comply with security frameworks like NIST, CIS, ISO 27001, and regulatory requirements such as HIPAA, SOC 2, or GDPR.
• Conduct cloud security assessments, identify vulnerabilities, and support mitigation efforts.
• Work with auditors and compliance teams to document and improve security controls.

• Develop security automation scripts using Python, PowerShell, or Terraform to enforce security policies.
• Manage and configure security tools such as CSPM (Cloud Security Posture Management), CWPP (Cloud Workload Protection Platforms), and CASB (Cloud Access Security Brokers).
• Assist in DevSecOps initiatives by integrating security into CI/CD pipelines.

• Stay up to date with emerging cloud security threats and industry trends.
• Conduct training sessions and develop documentation to improve cloud security awareness across teams.

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field.

• Compulsory (or willing to obtain within 6 months):
  • CompTIA Security+ (Basic cybersecurity knowledge)
  • Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900) or AWS Certified Cloud Practitioner or Google Associate Cloud Engineer (Cloud fundamentals)
• Preferred but Not Mandatory:
  • Certified Cloud Security Professional (CCSP) – Associate Level
  • AWS Certified Security – Specialty (for AWS environments)
  • Microsoft Certified: Azure Security Engineer Associate (for Azure environments)
• Must be authorized to work for Sonepar in the United States without sponsorship now or in the future
• Will work on-site at either our Irving, TX or Denver, CO office, hybrid 3-days a week

• 1+ years of experience in IT security, cloud computing, or a related field.
• Hands-on experience with cloud platforms (AWS, Azure, GCP) is a plus.
• Basic understanding of security principles, such as encryption, IAM, firewalls, and network security.
• Familiarity with security tools like vulnerability scanners, SIEM, or endpoint protection.
• Some exposure to scripting (Python, Bash, PowerShell) for security automation is a plus.

• 2+ years of experience in cloud security, cybersecurity, or IT security.
• Hands-on experience securing cloud environments (AWS, Azure, GCP).
• Strong understanding of IAM, encryption, networking security, and cloud security principles.
• Familiarity with security frameworks (CIS Benchmarks, NIST, ISO 27001).
• Experience with SIEM, endpoint protection, and cloud security monitoring tools.
• Scripting experience (Python, PowerShell, Bash) for automation is a plus.
• Experience with infrastructure-as-code (Terraform, Ansible) and DevSecOps practices is a plus.

• Required (at least one):
  • AWS Certified Security – Specialty
  • Microsoft Certified: Azure Security Engineer Associate
  • Google Professional Cloud Security Engineer
• Preferred:
  • Certified Cloud Security Professional (CCSP)
  • CompTIA CySA+ or CASP+
  • GIAC Cloud Security Automation (GCSA)

#LI:CA1

We offer great family-friendly benefits to full-time associates:

• Healthcare plans
• Dental & vision
• Paid time off
• Paid parental leave
• 401(k) retirement savings with company match
• Professional and personal development programs
• Opportunity to become a shareholder
• Employer-paid short- and long-term disability
• Employer-paid life insurance for spouse and dependents
• Robust wellness program
• Tuition Reimbursement
• Employee Assistance Program (EAP)

We’re proud to be a military-friendly company, and our many employee resource groups (ERGs) help you make connections and feel supported.

Get to know us on LinkedIn, Facebook, Instagram and Youtube and learn how we’re “Powering Progress for Future Generations.”

Learn more about us and our Sonepar family of brands: https://www.soneparusa.com/us-en/about-us

Sonepar is an Equal Opportunity and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, color, creed, religion, national origin, citizenship status, ancestry, sex, age, physical or mental disability unrelated to ability, marital status, family responsibilities, pregnancy, genetic information, sexual orientation, gender expression, gender identity, transgender, sex stereotyping, order of protection status, protected veteran or military status, or an unfavorable discharge from military service, and other categories protected by federal, state or local law.

Sonepar and our family of brands are committed to the full inclusion of all qualified individuals. In keeping with our commitment, we will take the steps to assure that people with disabilities are provided reasonable accommodations. Accordingly, if a reasonable accommodation is required to fully participate in the job application or interview process, to perform the essential functions of the position, and/or to receive all other benefits and privileges of employment, please call 843-745-2420 or email recruiting@sonepar-us.com.