Job Description

Join to apply for the Senior Cloud Security Engineer role at Heath Consultants Incorporated

14 hours ago Be among the first 25 applicants

Join to apply for the Senior Cloud Security Engineer role at Heath Consultants Incorporated

Heath Consultants Incorporated provided pay range

This range is provided by Heath Consultants Incorporated. Your actual pay will be based on your skills and experience talk with your recruiter to learn more.

Base pay range

$120,000.00/yr - $135,000.00/yr

Since 1933 Heath Consultants Incorporated is the leading provider of services and equipment to the natural gas and utility industry. Heath develops and manufactures its equipment in its own world-class facility located in Houston, TX.

The Senior Clound Security Engineer is responsible for protecting the organizations systems, data, and infrastructure by implementing and maintaining effective security controls across on-premises and cloud environments. This role collaborates with IT and cybersecurity teams in incident response efforts, monitors for threats, and supports the enforcement of security policies and procedures aligned with industry standards such as NIST, SOC 2, and CIS Benchmarks. The ideal candidate has strong expertise in cloud security, Identity and Access Management (IAM), data protection, and DevSecOps, with a preference for experience in Microsoft Azure environments. Hands-on knowledge of Web Application Firewalls (WAFs), firewall configuration, and network security is essential for securing enterprise assets in both hybrid and cloud-native architectures.

Key Responsibilities

Identity & Access Management (IAM):

• Manage and optimize Azure AD, Entra ID, and identity governance frameworks.
• Implement and maintain role-based access control (RBAC), conditional access, and privileged identity management (PIM).
• Manage user access rights, permissions, and privileges across systems and applications.
• Ensure adherence to the principle of least privilege and regularly review and update access policies.
• Integrate IAM solutions across enterprise applications and services.

Data Security & Compliance

• Design and enforce data security controls including encryption, DLP (e.g., Microsoft Purview), classification, and tokenization.
• Conduct risk assessments and align data handling with NIST CSF, SOC 2, CIS Benchmarks, and internal compliance standards.
• Implement and maintain data governance policies across Microsoft and hybrid platforms.
• Administer and maintain security tools and technologies related to data protection.
• Assist in preparing for and participating in security audits and assessments, maintaining internal security trackers.
• Maintain detailed records of security activities, incidents, and remediation efforts.
• Generate regular security reports for management review.

Cloud Security & Infrastructure Protection

• Secure Azure cloud workloads including VMs, containers, serverless, and PaaS environments.
• Implement and manage WAFs (Azure WAF, Cloudflare, or equivalent) and next-generation firewalls (e.g., Palo Alto, Azure Firewall).
• Monitor and improve security posture using Microsoft Defender for Cloud, Sentinel, and Azure Security Center.
• Conduct continuous cloud security assessments, vulnerability assessments, and threat modeling for Azure and hybrid systems.
• Research and recommend cloud security enhancements and improvements.

DevSecOps & Automation

• Embed security controls into CI/CD pipelines using Azure DevOps or GitHub Actions.
• Integrate automated code scanning, secrets detection, and container security tools.
• Enforce secure Infrastructure-as-Code (IaC) practices using tools like Terraform, Bicep, and ARM templates.
• Validate configurations using policy-as-code solutions (e.g., Azure Policy, OPA).
• Participate in the development and implementation of best practices and security standards for DevOps environments.

Security Operations & Incident Response

• Administer and maintain security systems, including SIEM, IDS/IPS, antivirus, and encryption technologies.
• Configure and tune SIEM/XDR tools (Microsoft Sentinel, Defender XDR) for proactive security monitoring.
• Monitor security logs and alerts, investigate anomalies, and collaborate in incident response efforts.
• Develop and maintain an incident response plan, coordinate and document response efforts during security incidents.
• Contribute to forensic analysis and root cause investigations; document incidents and recommend remediation strategies.
• Conduct routine security system audits and manage follow-ups on identified risks.

Governance, Risk & Compliance (GRC)

• Develop, update, and enforce security policies, procedures, and standards aligned with business and regulatory needs.
• Collaborate with IT and business teams to ensure security measures support organizational goals and operations.
• Promote a culture of security awareness by organizing and conducting employee training sessions on best practices.
• Maintain up-to-date knowledge of IT security trends, threats, and regulatory changes.

Competencies

Perform other related duties as assigned.

• Information Security Compliance & Regulatory Adherence.
• CIS Benchmark Implementation & Hardening Standards
• Cybersecurity Risk Assessment & Management.
• Secure Coding Practices & Development Standards
• Cybersecurity Support & Customer Engagement.
• Secure Software Development Lifecycle (SDLC)
• Secure Automation, Testing, and Deployment
• Threat Detection, Analysis, and Response.
• Identity and Access Management (IAM) Solutions
• Security Monitoring, Metrics, and Reporting.

Knowledge, Skills, And Experience

• A bachelors degree in computer science, Information Technology, Information Security or a related field is required.
• Minimum of five years of experience in security engineering or cloud security role
• Experience with Azure Cloud Environment including Microsoft 365
• Proven experience managing WAFs, firewalls, and cloud-native security tools
• Familiarity with scripting or automation (PowerShell, Python, Bash).
• Strong knowledge of IAM, DevSecOps, and data security in cloud environments.
• Experience preparing Risk Assessments for software and systems.
• Experience with computer network penetration testing, techniques and remediations
• Understanding SIEM, antivirus, and IDPS concepts
• Knowledge of the NIST Framework, SDLC lifecycle, and Secure code analysis

Work Environment And Physical Requirements

• Dependable, flexibility to work weekends, evenings, nights, and holidays.
• Heaths IT is a 24/7/365 department such that, as an employee needs assistance, they will be provided with the proper channels based on normal working hours, expanded working hours or emergency support hours.
• Hybrid work schedule (3 days onsite)
• Sitting for extended periods.
• Dexterity of hands and fingers to operate a computer keyboard, mouse, power tools, and to handle other computer components.
• Occasional inspection of cables in floors and ceilings.
• Lifting and transporting of moderately heavy objects, such as computers and peripherals.

Seniority level

• Seniority level

  Mid-Senior level

Employment type

• Employment type

  Full-time

Job function

• Job function

  Information Technology

• Industries

  Oil and Gas

Referrals increase your chances of interviewing at Heath Consultants Incorporated by 2x

Sign in to set job alerts for Senior Security Engineer roles.

Houston, TX $140,000.00-$165,000.00 2 weeks ago

Senior Security Intelligence Operations Center Analyst (Physical Security)

BCG Platinion | Principal IT Architect, Public Sector Industry Leader (Defense & Security, Civil Sector)

BCG Platinion | Lead IT Architect, Public Sector Industry Leader (Defense & Security, Civil Sector)

Houston, TX $128,000.00-$155,000.00 2 days ago

Houston, TX $130,000.00-$160,000.00 2 weeks ago

Sr. Security Engineer, Global Services Security

Houston, TX $143,300.00-$247,600.00 1 week ago

Security Engineer , Global Services Security

Houston, TX $136,000.00-$212,800.00 6 days ago

Security Systems Field and Service Engineer

Staff Security Operations Engineer, Incident Response Lead

IT Security Architect - Onsite (C2C role)

Director, Senior Cloud Security Architect

Houston, TX $140,000.00-$165,000.00 2 weeks ago

Software Engineer, Anti-Abuse & Security

Staff Security Operations Engineer (Observability & Automation)

OT Security Architect (Domain Architect)

Security Architect for Network and Cloud

Houston, TX $110,000.00-$130,000.00 2 days ago

Senior Cyber Security Engineer (Supporting NASA at Johnson Space Center)

Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Job Tags

Full time, Night shift, Weekend work, Afternoon shift,

Similar Jobs