✦ Luna Orbit — Cybersecurity

Cloud Security Engineer

at RISCPoint

📍 Remote, US Remote Posted April 10, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Not Specified
Experience senior
Exp. Years Not specified
Education Not specified
Category Cybersecurity

About this role

RISCPoint is hiring a Cloud Security Engineer to design, implement, and govern secure Infrastructure-as-Code environments. The role focuses on building scalable, automated, security-first cloud solutions aligned to best practices and regulatory frameworks across AWS, Azure, and/or GCP.

Key Responsibilities

  • Design, implement, and maintain CI/CD pipelines with automated security gates and policy-as-code checks,
  • Build and maintain a library of secure reusable Terraform modules encoding compliance requirements,
  • Own security architecture decisions across cloud deployments (IAM, network segmentation, secrets management, logging and monitoring, encryption),
  • Partner with client engineering and compliance teams to translate regulatory and security requirements into infrastructure solutions,
  • Document and communicate security/compliance implementation details

Technical Overview

You will own CI/CD pipeline design that enforces automated security gates and policy-as-code checks, and build secure reusable Terraform modules that encode compliance requirements. You will also make security-by-design architecture decisions across IAM, network segmentation, secrets management, logging/monitoring, and encryption controls.

Ideal Candidate

The ideal candidate is a senior Cloud Security Engineer who has led secure Infrastructure-as-Code (IaC) development using Terraform and designed CI/CD pipelines with automated security gates and policy-as-code checks. They have strong security-by-design experience across IAM, network segmentation, secrets management, and logging/monitoring, with practical compliance mapping to FedRAMP, SOC 2, and ISO 27001 on AWS, Azure, and/or GCP.

Must-Have Skills

Infrastructure-as-Code (IaC)secure Infrastructure-as-Code (IaC) environmentsTerraformCI/CD pipelinesautomated security gatespolicy-as-code checkssecurity architecture decisionsIAM design

Tools & Platforms

TerraformAWSAmazon Web ServicesAzureMicrosoft AzureGCPGoogle Cloud Platform

Required Skills

Infrastructure-as-Code (IaC)TerraformCI/CD Pipeline Ownershippolicy-as-code checkssecurity architectureIAM designnetwork segmentationsecrets managementlogging and monitoring pipelinesencryption controlsAWSAzureGCPFedRAMPSOC 2ISO 27001HITRUST

Hard Skills

Infrastructure-as-Code (IaC)TerraformCI/CD Pipeline Ownershippolicy-as-code checkscompliance validationsecurity architectureIAM designnetwork segmentationsecrets managementlogging and monitoring pipelinesencryption controlsAutomated security gatesSecure IaC DevelopmentAWSAmazon Web ServicesAzureMicrosoft AzureGCPGoogle Cloud PlatformFedRAMP EngineeringSOC 2ISO 27001HITRUST

Soft Skills

Own objectives and outcomesClient collaborationDocument and communicatePartner directlyTranslate regulatory and security requirements into executable infrastructure solutions

Industry & Role

Industry Consulting
Job Function Lead secure cloud security and compliance engineering for Infrastructure-as-Code and CI/CD.
Role Subtype Cloud Security Engineer
Tech Domains Cybersecurity, Cloud & Infrastructure, Amazon Web Services, Azure, Google Cloud Platform, Infrastructure as Code, DevOps & SRE, GRC (Governance, Risk & Compliance) / Compliance

Keywords for Your Resume

Cloud Security EngineerInfrastructure-as-CodeIaCTerraformCI/CD pipelinesCI/CD Pipeline Ownershippolicy-as-codeAutomated security gatessecurity-first cloudsecurity architectureIAM designnetwork segmentationsecrets managementlogging and monitoringencryption controlsAWSAmazon Web ServicesAzureMicrosoft AzureGCPGoogle Cloud PlatformFedRAMPSOC 2ISO 27001HITRUSTInfrastructure-as-Code (IaC)

Deal Breakers

Must have hands-on experience with Infrastructure-as-Code (IaC) and Terraform, Must be able to design and implement CI/CD pipelines with automated security gates and policy-as-code checks, Must have security-by-design experience including IAM design and encryption controls, Must be able to support compliance frameworks including FedRAMP, SOC 2, and ISO 27001

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile