Remote Cloud Security Engineer (AWS, Azure, GCP)

at Concord USA

Posted 1 day ago 1 applied

Description:

  • The position is for a Senior Cloud Identity & Entitlement Security Engineer on a contract basis, either W2 hourly or Corp-to-Corp.
  • The contract duration is 6 months, with a possibility of renewal.
  • The hourly rate is $75 for W2 and $95 for Corp-to-Corp.
  • The role is fully remote within the USA.
  • The engineer will deploy and configure Microsoft Entra Permissions Management or similar CIEM across three cloud platforms.
  • Responsibilities include building Just-in-Time (JIT) elevation workflows for privileged roles and eliminating standing admin rights.
  • The engineer will map and enforce RBAC/ABAC policies and write fine-grained IAM policies in AWS and Azure.
  • Integration of CIEM feeds with Tenable for real-time entitlement risk dashboards is required.
  • The role involves running discovery, conducting quarterly access reviews, and remediation, as well as presenting metrics to GRC and audit teams.
  • The engineer will produce clean runbooks, diagrams, and how-to decks for engineering and compliance audiences.

Requirements:

  • Candidates must have 6 to 8 years of experience in cloud security engineering with AWS, Azure, and GCP.
  • Hands-on deployment experience of a CIEM platform, such as Entra Permissions Management, is required.
  • Proven experience in implementing JIT and privileged-access solutions is necessary.
  • Candidates should have deep fluency in IAM policy authoring, including IAM, RBAC, ABAC, and identity-lifecycle automation.
  • Experience with tool integration, particularly with Tenable or similar vulnerability/risk engines, is essential.
  • A track record of supporting audits such as SOX, ISO 27001, GDPR, or comparable standards is required.
  • Strong written and verbal communication skills are necessary, with the ability to brief executives and write clear tickets and runbooks.

Benefits:

  • The position offers a competitive hourly rate, with options for W2 or Corp-to-Corp arrangements.
  • There is a possibility of contract renewal after the initial 6-month period.
  • The role is fully remote, providing flexibility in work location.
  • Joining Concord means being part of a rapidly growing consulting firm focused on delivering real solutions to complex business and technology challenges.