Cloud Engineering Manager – Security & Compliance

Centric Software is seeking a seasoned Cloud Engineering Manager – Security & Compliance to join our growing CyberSecurity team on a contract-to-hire basis. This role offers the opportunity to make an immediate impact while paving the way for a potential full-time position based on performance and business needs.

This is a hybrid role that combines hands-on engineering with governance and compliance leadership. You’ll be responsible for securing our AWS and Azure cloud environments, driving best practices, and ensuring alignment with regulatory standards.

We’re looking for a cloud security leader with proven experience managing teams of cloud security engineers, and a strong focus on proactive security architecture, compliance frameworks, and audit readiness.

If you're passionate about cloud security, thrive in both technical and strategic domains, and want to contribute to a global SaaS organization, we’d love to connect.

• Partner with security and engineering leadership to design and communicate a scalable, resilient cloud security roadmap that aligns with business objectives.
• Establish regular team practices to ensure security champions are accountable for their deliverables, with risks and priorities clearly communicated to stakeholders. Project timelines, SLAs, and delivery estimates are transparent and agreed upon in advance.
• Develop and maintain cloud security programs to ensure compliance with regulatory requirements and privacy laws, while anticipating future industry developments and emerging threats.
• Serve as the primary point of contact for cloud security initiatives, requirements, and escalations, providing subject matter expertise and proactively communicating security posture to both technical and non-technical stakeholders.
• Support employee retention and growth by mentoring and coaching the team, fostering a people-first culture with clear expectations and structured support to achieve high performance.
• Define and track key performance indicators (KPIs), objectives and key results (OKRs), and security metrics to demonstrate the effectiveness of the cloud security program, ensuring integration with Vulnerability Management, GRC, and Security Operations.

• Perform a full technical review of AWS and Azure environments, validating IAM configurations, network segmentation, encryption, and logging settings.
• Deploy and tune cloud-native detection and monitoring tools (AWS GuardDuty, Security Hub, Azure Defender) integrated into Cortex XSIAM.
• Conduct initial vulnerability scans across workloads (VMs, serverless, and SaaS integrations) and establish a remediation priority list.
• Review existing ISMS documentation and map cloud-specific controls to ISO 27001, SOC 2, and NIS 2 requirements.

• Implement automated compliance checks for ISO 27001 Annex A controls using cloud-native policies and CSPM tools.
• Develop and document a cloud security governance framework including policies, standards, and operational baselines for AWS and Azure.
• Work with CloudOps and DevOps to integrate secret management (Keeper PAM, Key Vault, Secrets Manager) into CI/CD pipelines and operational processes.
• Establish reporting cadence for cloud security metrics, risks, and progress updates to leadership.

• Lead penetration testing and red team exercises targeting AWS and Azure environments, validating incident response playbooks.
• Demonstrate measurable improvements in cloud governance KPIs (policy adoption, reduced misconfigurations, faster vulnerability remediation, improved audit evidence quality).
• Deliver the annual cloud security risk assessment and strategy roadmap, providing technical evidence and governance updates mapped to ISO 27001, SOC 2, and NIS 2 requirements.
• Present a multi-year cloud security strategy aligned with Centric’s ISMS program and business objectives.

• 7–10 years in cybersecurity with at least 5+ years of hands-on cloud security experience (AWS & Azure).
• Strong technical expertise in:
  • AWS (IAM, GuardDuty, Security Hub, KMS, Config, CloudTrail).
  • Azure (Entra ID, Key Vault, Defender for Cloud, Sentinel).
• Experience with cloud SIEM/SOAR, vulnerability management, and incident response (e.g., Cortex XSIAM, Tanium, CrowdStrike).
• Proven ability to develop and implement cloud security governance frameworks, policies, and strategies.
• Knowledge of compliance and regulatory frameworks: ISO 27001, SOC 2, NIS 2, GDPR.
• Strong background in risk assessments, audits, and ISMS-aligned control design.
• Excellent communicator, able to explain technical risks to executives and provide actionable guidance to engineers.

• Cloud Security (Highly Preferred):
  • AWS Certified Security – Specialty
  • Microsoft Certified: Cybersecurity Architect Expert
  • Microsoft Certified: Security Operations Analyst Associate
  • CCSK (Certificate of Cloud Security Knowledge)
  • CCSP (Certified Cloud Security Professional)
• Governance & Compliance (for ISMS alignment):
  • ISO 27001 Lead Implementer or Lead Auditor
• Optional Add-ons (Nice to Have):
  • GIAC Cloud Security Engineer (GCLD)
  • GIAC Cloud Incident Response (GCIR)