Cloud Security Engineer

Job Description: Cloud Security Engineer at UL Solutions

This role offers the flexibility of being fully remote anywhere in the US, or a hybrid work arrangement with 3 days a week on-site if you are located near a UL office.

Role Overview

UL Solutions is seeking a highly skilled Cloud Security Engineer with strong Application Security expertise to join our security architecture team. You will be instrumental in designing, implementing, and maintaining secure cloud environments and applications across multi-cloud platforms, with a primary focus on Azure. The ideal candidate will possess hands-on experience with cloud-native security tools, DevSecOps practices, and essential compliance frameworks such as NIST 800-53, SOC 2, and CIS Controls.

Responsibilities

Cloud Security Engineering

• Design and implement robust security controls for cloud infrastructure across Azure, AWS, and GCP.
• Develop and maintain security architecture patterns, including hub-and-spoke models and Zero Trust principles.
• Integrate advanced security tools like Wiz, Microsoft Defender for Cloud, Silverfort, and Terraform.
• Conduct thorough threat modeling and risk assessments specifically for cloud-native services.
• Collaborate effectively with IAM, SOC, and GRC teams to ensure cloud security aligns with broader enterprise policies.

Application Security

• Perform secure code reviews, static/dynamic analysis, and comprehensive vulnerability assessments.
• Integrate security seamlessly into CI/CD pipelines utilizing tools such as Snyk, Checkmarx, or Veracode.
• Provide expert guidance to development teams on secure coding practices and adherence to OWASP Top 10.
• Design and implement robust API security strategies, including OAuth2, OpenID Connect, and mTLS.
• Support the efficient remediation of application vulnerabilities and offer crucial technical guidance.

Compliance & Governance

• Map cloud and application security controls to critical compliance frameworks like NIST 800-53, SOC 2, and CIS.
• Assist actively in audits and the collection of necessary evidence for regulatory compliance.
• Maintain comprehensive documentation of security architecture, policies, and procedures.

Qualifications

Required Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, or a related technical field.
• 3-4 years of demonstrated experience in both cloud security engineering and application security.
• Strong foundational understanding of Azure security services and architectural principles.
• Hands-on experience with infrastructure-as-code (IaC) tools such as Terraform or Bicep.
• Familiarity with Snowflake security features and data protection strategies.
• Proficient knowledge of identity and access management (IAM), specifically Azure AD, Conditional Access, and MFA.
• Practical experience with DevSecOps tools and practices.

Preferred Qualifications

• Industry certifications such as Azure Security Engineer Associate, CISSP, CCSP, OSCP, or GIAC.
• Experience managing multi-subscription Azure environments.
• Familiarity with Zero Trust architecture and its practical implementation.
• Experience with security automation and orchestration.

Soft Skills

• Strong analytical and problem-solving capabilities.
• Excellent communication and collaborative abilities.
• Capacity to work both independently and within cross-functional team environments.
• A passion for continuous learning and staying abreast of the latest security trends.

What You’ll Experience Working For UL Solutions

UL Solutions has been pioneering change since 1894, leading the way in protecting the planet and its inhabitants. Our teams impact billions of products and services globally, driven by a passion for safety science. This role offers more than just a job; it's a calling to contribute to a safer, more sustainable world. You'll join a global community of diverse minds, innovating and challenging norms to build a better future, with significant investment in employee training and development.

Total Rewards

The estimated salary range for this Cloud Security Engineer position is $95,000 to $120,000, influenced by skills, experience, and location. This role is eligible for an annual bonus with a target payout of 10% of the base salary. UL Solutions offers comprehensive health benefits (medical, dental, vision), wellness programs (mental and financial health), and retirement savings (401K). Full-time employees also receive generous paid time off: 15 vacation days, 12 holiday days (including floating holidays), and 72 hours of sick time off.

Key Skills/Competency

• Cloud Security
• Application Security
• Azure
• DevSecOps
• IAM
• Compliance Frameworks
• Threat Modeling
• Infrastructure-as-Code
• Vulnerability Management
• Zero Trust