Cloud Security Automation Engineer

About the Role

CSG is seeking a Cloud Security Automation Engineer to join their highly technical team. This role focuses on designing, implementing, and maintaining public cloud security technologies across multiple cloud providers to protect CSG's networks, systems, applications, and data. You will be instrumental in improving CSG’s public cloud security framework and automation platform, with a strong emphasis on Python-based development. As an information security consultant, you will provide guidance on cloud security best practices and support security operations during incidents.

Key Responsibilities

Engineering & Operations – 40%

• Analyze, design, implement, troubleshoot, and maintain commercial and cloud-native security solutions in public cloud environments.
• Create and maintain automated workflows and integrations to support cloud security controls and the automation platform, primarily using Python.
• Identify and define security system requirements for public cloud environments.
• Continuously analyze security systems and drive improvements, focusing on automation and resilience.
• Develop, document, and maintain configuration and security standards, technical documentation, and standard operating procedures (SOPs).
• Tune, filter, and customize security systems with Information Security Analysts to reduce noise and improve detection quality.

Cloud Security, Automation SME & Consulting – 25%

• Serve as a subject matter expert for public cloud security and security automation.
• Consult with team members and other groups to solve basic to moderately complex cloud-focused security challenges.
• Partner with teams outside of Security (e.g., application, infrastructure, DevOps/Platform) to design secure, automated cloud architectures and guardrails.

Project Work – 10%

• Lead and contribute to medium to large security and automation projects.
• Build project plans based on requirements analysis and stakeholder input.
• Communicate project status, risks, and metrics to leadership.

Audit, Compliance & Regulatory – 10%

• Support audit, compliance, and regulatory activities, including PCI DSS, SOX, and evolving privacy laws.
• Provide evidence, explanations, and remediation input for controls related to public cloud security and associated automation.

Incident Response – 5%

• Participate in incident response activities by reviewing and analyzing security events and incidents.
• Use automation (e.g., Python-based tooling and workflows) to enhance the speed and consistency of responses.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
• Preferable AWS and/or Azure certifications with strong coding and automation skills.
• 2+ years of hands-on software development or scripting experience in Python, ideally in security, infrastructure, or DevOps contexts.
• Proven experience building, maintaining, and troubleshooting automation (e.g., scripts, services, serverless functions, CI/CD integrations) for cloud or security use cases.
• Experience with public cloud platforms such as AWS and/or Azure, including core security services (e.g., IAM, KMS, security groups, logging/monitoring, configuration management).
• Familiarity with infrastructure-as-code and configuration management tools (e.g., CloudFormation, Terraform, ARM/Bicep, Ansible) is preferred.
• Experience integrating security tooling and cloud services via APIs and SDKs.
• Solid understanding of information security principles, including network security, identity and access management, and secure development practices in cloud environments.

CSGer Perks & Benefits

• Work from Home, in-office, or hybrid
• Employee Belonging Groups
• Healthcare: Dental, Medical, and Vision
• Paid Vacation, Volunteer, and Holiday Time Off
• And so much more!

Key skills/competency

• Cloud Security
• Automation
• Python
• AWS
• Azure
• Security Engineering
• Information Security
• DevOps
• Infrastructure as Code
• Incident Response