×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Cloud Operations Engineer - Mobility

Job in Centreville, Fairfax County, Virginia, 22020, USA
Listing for: S&P Global
Full Time position
Listed on 2026-03-01
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

About the Role

Grade Level (for internal use): 09

The Cloud Operations & Compliance Engineer is responsible for day‑to‑day cloud operational support and continuous compliance across a multi‑account cloud environment. This role owns cloud account provisioning,
OU (Organizational Unit) management
, Cloud Custodian policy operations
, and Tenable vulnerability management
, partnering with Security, Platform Engineering, and application teams to keep cloud environments secure, compliant, and scalable.

Key Responsibilities Cloud Account Provisioning & Lifecycle
  • Provision, configure, and decommission cloud accounts/subscriptions/projects using approved enterprise standards (naming, tagging, guardrails, baseline monitoring, logging).
  • Implement and maintain “day‑1” and “day‑2” readiness controls: access, encryption defaults, audit logging, centralized security services, and required integrations.
  • Maintain account inventory, ownership metadata, and operational runbooks; ensure accounts meet onboarding requirements before go‑live.
OU / Organization Management (Governance at Scale)
  • Design, maintain, and optimize OU structures aligned to business units, environments (prod/non‑prod), and compliance boundaries.
  • Manage and validate guardrails and inheritance models (policies, baseline controls, SCP‑like restrictions where applicable, service enablement).
  • Coordinate OU moves and account restructuring with minimal disruption; assess blast radius and validate policy impacts.
Cloud Custodian Management (Policy‑as‑Code Operations)
  • Develop, deploy, and maintain Cloud Custodian policies to enforce governance (tagging, encryption, public exposure controls, identity hygiene, cost controls).
  • Operate Cloud Custodian execution pipelines/schedules; manage policy testing, approvals, exceptions, and rollbacks.
  • Investigate policy findings, tune rules to reduce false positives, and document decisioning for auditability.
  • Produce compliance evidence and metrics (policy coverage, remediation rates, exception aging).
Tenable Management (Vulnerability & Exposure Management)
  • Administer Tenable integrations for cloud vulnerability visibility (asset discovery, credentialing where approved, scan scheduling, agent coverage where applicable).
  • Triage vulnerability findings, validate exploitability/asset criticality, and coordinate remediation with service owners.
  • Track SLAs, risk acceptance/exception workflows, and recurring reporting for leadership and auditors.
  • Improve coverage and data quality (asset tagging alignment, deduplication, ownership mapping).
Compliance Operations & Audit Support
  • Support compliance programs by maintaining control evidence (logging, monitoring, vulnerability management, configuration baselines).
  • Participate in internal and external audits: gather artifacts, explain technical controls, and implement corrective actions.
  • Maintain documentation for cloud standards, baselines, and operational procedures.
Operations, Incident Support, and Continuous Improvement
  • Respond to cloud security/compliance incidents and operational issues; perform root cause analysis and drive corrective/preventative actions.
  • Automate repetitive tasks using scripting and infrastructure‑as‑code where possible; improve reliability and reduce manual toil.
  • Collaborate with engineering teams to integrate compliance controls into CI/CD and platform patterns.
Required Qualifications
  • 3–6 years’ experience in cloud operations, cloud security, or governance/compliance engineering
    .
  • Hands‑on experience managing multi‑account cloud environments (account lifecycle, policy/guardrails, centralized logging/monitoring).
  • Practical experience with policy‑as‑code and operating enforcement tooling (e.g., Cloud Custodian) in production.
  • Experience administering vulnerability management tooling and workflows (e.g., Tenable), including remediation coordination and SLA tracking.
  • Scripting/automation proficiency (e.g., Python, Bash, Power Shell) and familiarity with IaC concepts (Terraform/Cloud Formation‑like).
  • Strong operational discipline: documentation, change management, troubleshooting, and stakeholder communication.
Preferred Qualifications
  • Experience with identity and access governance…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search