Cloud Security Engineer

QTS Data Centers•Atlanta, GA

About The Position

The Cloud Security Engineer is responsible for architecting, implementing, and operating a secure, resilient cloud application infrastructure that aligns with QTS’ business objectives. This role drives strategic and technical security initiatives across public, private, and hybrid cloud environments, ensuring that QTS’ rapid growth is powered by scalable, compliant, and forward‑thinking security practices. The engineer serves as a security subject matter expert, partnering with architects, system administrators, enterprise IT, and business leaders to embed security from design through deployment. This role supports operational innovation, shapes cloud security strategy, and contributes strongly to incident response, automation, and configuration management. The Cloud Security Engineer must be highly technical, experienced across diverse cloud platforms (SaaS, IaaS, PaaS), and capable of delivering both high‑level strategic guidance and hands-on engineering excellence. The ideal candidate brings 5–7+ years of experience in security and systems administration, excels in dynamic and fast-paced environments, and maintains deep awareness of emerging threats, technologies, and best practices in cloud security.

Requirements

Bachelor's degree in computer science, information assurance, MIS or related field, or equivalent industry experience
At least 5-7+ years’ experience in cybersecurity as a practitioner and with at least 2-3+ years exposure with SaaS platforms (Box, Salesforce, ServiceNow, M365 etc), Amazon Web Services (AWS), Microsoft Azure or VMware.
Strong Linux and Windows support skills.
Experienced in cloud networking architecture and cloud operations, with cloud access security broker (CASB) experience preferred.
Familiarity with tools such as Git, Jenkins, Chef, Puppet and Salt.
Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI).
IDAM experience, such as OAuth, OpenID, Azure Active Directory.
Experience with scripting languages such as Python, Ruby, PowerShell or JavaScript.
Experienced in the use of threat intelligence services in a production environment.
Experience and understanding of various regulatory requirements and laws, including but not limited to: Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following: ISO 27001/2, ITIL or NIST.
Up-to-date understanding of a wide-range of incident response, system configuration, vulnerability management and hardening guidelines.
Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
Team leadership experience to help with the organizational and team dynamics in a growing field
Demonstrated problem-solving abilities to manage complex local and international security requirements.
Self-motivated and -directed, well-organized and able to position controls in anticipation of threats.
Successful track record collaborating with technical and non-technical teams to promote ideas to support business enablement.
Familiarity with international and state privacy laws.
Experience writing technical documentation.
Highly trustworthy; leads by example
US Citizenship for this position is required by law due to federal customer contracts

Nice To Haves

Holds or working toward one or more including: CCSP, CISSP, AWS Certified Cloud Practitioner or additional AWS advanced certifications such as AWS Certified DevOps Engineer, VMware Certified Professional, Microsoft Azure Security Engineer Certification, Microsoft Identity and Access Administrator

Responsibilities

Cloud Security Design & Implementation Build and maintain secure, resilient cloud environments across public, private, and hybrid platforms.
Apply security best practices to new and existing cloud applications, ensuring compliance with QTS security and regulatory standards.
Partner with architects, IT teams, and system owners to guide secure application and infrastructure design.
Identity, Access & Configuration Management Implement and support strong identity and access management controls, including MFA, hardware tokens, and other authentication methods.
Maintain consistent cloud configurations using tools like Puppet, Chef, or Ansible.
Monitoring, Automation & Incident Response Work with SOC and incident response teams to investigate alerts, analyze threats, and respond quickly to cloud security events.
Create playbooks, documentation, and automated response workflows using AI and SOAR to improve speed and accuracy.
Develop and maintain scripts (Python, PowerShell, Ruby) to support secure data flow and security operations.
Continuous Improvement & Compliance Review cloud environments regularly to identify risks and recommend security improvements.
Support remediation efforts following audits, assessments, and vulnerability reports.
Stay current on emerging security threats, tools, and best practices, applying them to strengthen QTS’ cloud posture.
Collaboration & Communication Participate in project and implementation meetings as a security advisor.
Communicate risks and recommendations clearly to both technical and non-technical teams.
Work effectively with internal teams and external vendors to ensure cloud solutions remain secure.