Cloud Security Engineer

Job Summary:

Consultant Advisor, ERP Kyle Johnson is recruiting this position.

email me linkedin

Our East Coast Healthcare client is seeking a Principal Information Security Specialist with deep cloud security engineering expertise to help shape and secure our multi-cloud environment. This senior technical leader will design and optimize cloud security controls, guide enterprise security architecture, and support cloud migration and modernization initiatives. This is a hands-on, highly collaborative role that influences strategic direction while solving complex security challenges. Our client ideally wants this consultant contract-to-hire, and the role will be approx. 20% onsite in Philadelphia.

Key Responsibilities

• Design, implement, and optimize cloud security controls across Azure (preferred), AWS, and GCP.
• Lead or support cloud migration security, CSPM/EDR/SIEM tuning, secure configuration management, and automation initiatives.
• Serve as an enterprise security SME, advising on cloud architecture, identity, DevSecOps, and cloud-native application strategies.
• Collaborate with internal teams, vendors, and MSP partners to improve detection, response, and overall cloud security posture.
• Develop incident response plans, runbooks, hardening guides, and participate in tabletop exercises.
• Ensure alignment to CHOP security policies and frameworks such as NIST 800-53, HIPAA, PCI-DSS, CIS Benchmarks, CAF, and Zero Trust models.
• Support audits, risk remediation, and compliance evidence collection.
• Mentor junior security engineers and contribute to enterprise governance and design forums.

Required Qualifications

• Bachelor’s degree required; Computer Science or related field preferred.
• 12+ years of IT experience and 6+ years in information security.
• 3+ years in identity and access management, RBAC, or cloud identity models.
• Hands-on experience securing multi-cloud environments and implementing IAM, network security, SIEM, EDR, CSPM, and encryption technologies.
• Proficiency with Azure, Microsoft Defender, Sentinel/Splunk, Wiz (or similar CSPM), Entra ID, Terraform/PowerShell, and vulnerability management tools.
• Strong knowledge of regulatory frameworks (HIPAA, PCI, NIST, ISO 27000).

To learn more about this and other positions, contact Kyle Johnson at or kyle.johnson@healthcareitleaders.com. Healthcare IT Leaders is a national leader in IT workforce solutions, connecting healthcare provider, payer and life sciences organizations with experienced technology talent for consulting and full-time hiring. For more information, visit us on the web at www.healthcareitleaders.com.