Cloud Security Engineer

The Cloud Security Engineer is responsible for architecting, implementing, and operating a secure, resilient cloud application infrastructure that aligns with QTS’ business objectives. This role drives strategic and technical security initiatives across public, private, and hybrid cloud environments, ensuring that QTS’ rapid growth is powered by scalable, compliant, and forward‑thinking security practices.

The engineer serves as a security subject matter expert, partnering with architects, system administrators, enterprise IT, and business leaders to embed security from design through deployment. This role supports operational innovation, shapes cloud security strategy, and contributes strongly to incident response, automation, and configuration management. The Cloud Security Engineer must be highly technical, experienced across diverse cloud platforms (SaaS, IaaS, PaaS), and capable of delivering both high‑level strategic guidance and hands‑on engineering excellence.

The ideal candidate brings 5–7+ years of experience in security and systems administration, excels in dynamic and fast-paced environments, and maintains deep awareness of emerging threats, technologies, and best practices in cloud security.

RESPONSIBILITIES, other duties may be assigned

Cloud Security Design & Implementation

• Build and maintain secure, resilient cloud environments across public, private, and hybrid platforms.
• Apply security best practices to new and existing cloud applications, ensuring compliance with QTS security and regulatory standards.
• Partner with architects, IT teams, and system owners to guide secure application and infrastructure design.

Identity, Access & Configuration Management

• Implement and support strong identity and access management controls, including MFA, hardware tokens, and other authentication methods.
• Maintain consistent cloud configurations using tools like Puppet, Chef, or Ansible.

Monitoring, Automation & Incident Response

• Work with SOC and incident response teams to investigate alerts, analyze threats, and respond quickly to cloud security events.
• Create playbooks, documentation, and automated response workflows using AI and SOAR to improve speed and accuracy.
• Develop and maintain scripts (Python, PowerShell, Ruby) to support secure data flow and security operations.

Continuous Improvement & Compliance

• Review cloud environments regularly to identify risks and recommend security improvements.
• Support remediation efforts following audits, assessments, and vulnerability reports.
• Stay current on emerging security threats, tools, and best practices, applying them to strengthen QTS’ cloud posture.

Collaboration & Communication

• Participate in project and implementation meetings as a security advisor.
• Communicate risks and recommendations clearly to both technical and non-technical teams.
• Work effectively with internal teams and external vendors to ensure cloud solutions remain secure.

BASIC QUALIFICATIONS

• Bachelor's degree in computer science, information assurance, MIS or related field, or equivalent industry experience
• At least 5-7+ years’ experience in cybersecurity as a practitioner and with at least 2-3+ years exposure with SaaS platforms (Box, Salesforce, ServiceNow, M365 etc), Amazon Web Services (AWS), Microsoft Azure or VMware.
• Strong Linux and Windows support skills.
• Experienced in cloud networking architecture and cloud operations, with cloud access security broker (CASB) experience preferred.
• Familiarity with tools such as Git, Jenkins, Chef, Puppet and Salt.
• Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI).
• IDAM experience, such as OAuth, OpenID, Azure Active Directory.
• Experience with scripting languages such as Python, Ruby, PowerShell or JavaScript.
• Experienced in the use of threat intelligence services in a production environment.
• Experience and understanding of various regulatory requirements and laws, including but not limited to: Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following: ISO 27001/2, ITIL or NIST.
• Up-to-date understanding of a wide-range of incident response, system configuration, vulnerability management and hardening guidelines.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
• Team leadership experience to help with the organizational and team dynamics in a growing field
• Demonstrated problem-solving abilities to manage complex local and international security requirements.
• Self-motivated and -directed, well-organized and able to position controls in anticipation of threats.
• Successful track record collaborating with technical and non-technical teams to promote ideas to support business enablement.
• Familiarity with international and state privacy laws.
• Experience writing technical documentation.
• Highly trustworthy; leads by example

• US Citizenship for this position is required by law due to federal customer contracts

PREFERRED QUALIFICATIONS

• Holds or working toward one or more including: CCSP, CISSP, AWS Certified Cloud Practitioner or additional AWS advanced certifications such as AWS Certified DevOps Engineer, VMware Certified Professional, Microsoft Azure Security Engineer Certification, Microsoft Identity and Access Administrator

KNOWLEDGE, SKILLS, AND ABILITIES

• Experience working collaboratively in a team environment
• Excellent interpersonal skills with the ability to interface with all levels of the organization

TOTAL REWARDS
This role is also eligible for a competitive benefits package that includes: medical, dental, vision, life, and disability insurance; 401(k) retirement plan; flexible spending and HSA accounts; paid holidays; paid time off; paid volunteer days; employee assistance program; tuition assistance; parental leave; military leave assistance; QTS scholarship for dependents; wellness program, and other company benefits.
This position is Bonus eligible.

We conform to all the laws, statutes, and regulations concerning equal employment opportunities and affirmative action.  We strongly encourage women, minorities, individuals with disabilities and veterans to apply to all of our job openings.  We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, or national origin, age, disability status, Genetic Information & Testing, Family & Medical Leave, protected veteran status, or any other characteristic protected by law.  We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer or the government, or against any individuals who assist or participate in the investigation of any complaint or discrimination claim.

The "Know Your Rights" Poster is included here:

Know Your Rights (English)

Know Your Rights (Spanish)

The pay transparency policy is available here:

Pay Transparency Nondiscrimination Poster-Formatted

QTS is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to [email protected] and let us know the nature of your request and your contact information.