Senior Cloud Security Engineer

JOB SUMMARY

The Senior Cloud Security Engineer plays a critical role in ensuring the integrity, scalability, and security of SE Health’s cloud environments. This position is responsible for designing, maintaining, and supporting cloud security configurations across platforms such as Azure and key SaaS applications, including identity and access models, network security controls, workload protection, and encryption standards, while ensuring compliance with segregation of duties and internal security controls.

In addition to managing daily cloud security change requests and performing system audits, the role supports security monitoring and incident response activities, enhancing the organization’s overall cloud posture. The individual collaborates closely with the technology team and business stakeholders to define cloud security strategy, implement new security capabilities, and ensure cloud systems are governed in a sustainable and risk‑mitigated manner.

• Lead the design, maintenance, and enhancement of cloud security policies and configurations across platforms such as Azure, and key SaaS systems, including identity and access management, network security controls, workload protection, and data visibility models.
• Monitor and manage cloud security change requests, ensuring appropriate access controls, privileged roles, and segmentation rules are implemented to maintain environment integrity and reduce risk.
• Conduct quarterly audits of access, role assignments, configurations, and security logs to ensure alignment with internal controls, compliance standards, and Segregation of Duties (SOD).
• Support disaster recovery and business continuity planning by validating cloud platforms’ role in critical workflows, resilience configurations, and system availability.

• Ensure cloud security configurations and practices align with internal security policies and frameworks such as ISO 27001, NIST, PHIPA, and other applicable compliance requirements.
• Document and maintain internal security controls, audit trails, and change records across cloud platforms to support both internal and external audit activities.
• Vet and validate requests for new or modified cloud access, privileged roles, security groups, policies, and configurations to ensure adherence to security, compliance, and least‑privilege principles.

• Configure and maintain cloud security architecture, including IAM models, conditional access policies, endpoint and workload protections, network segmentation rules, and encryption standards across multiple environments.
• Implement and support enhancements, new security capabilities, and configuration changes to strengthen cloud posture and align with evolving business and technical needs.
• Coordinate and perform testing of security updates, policy changes, and new integrations to ensure smooth deployment and minimal disruption to operations.
• Respond to support requests for cloud‑related security issues, troubleshooting access, policy conflicts, or configuration errors.

• Investigate and respond to cloud security incidents, collaborating with cross‑functional teams to assess impact, determine root cause, and implement corrective and preventive actions.
• Recommend enhancements, guardrails, or policy changes based on incident trends, risk findings, audit results, or vulnerability reports.
• Continuously assess risks related to identity, privileged access, integrations, misconfigurations, and data exposure across cloud environments and propose mitigation strategies as needed.

• Develop and deliver cloud security dashboards and reports that provide visibility into access, configuration health, compliance posture, and operational metrics.
• Partner with technical and business stakeholders to understand requirements and deliver secure, scalable solutions that support operational efficiency and governance.
• Maintain clear documentation on cloud security architecture, standards, procedures, and change…