CEIS | Clover Leaf Solutions is seeking a Cloud Security Engineer to support our DOE client in developing, implementing, and maintaining automated guardrails for Microsoft Azure cloud environments. This role is responsible for ensuring compliance with security frameworks, company policies, and industry regulations while optimizing cost-efficiency, scalability, and performance. The Cloud Security Engineer will collaborate with DevOps, Cloud Architects, and Security teams to enforce best practices, mitigate risks, and prevent misconfigurations in cloud-native applications.

Key Responsibilities: Design, implement, and manage automated security policies in Azure using Azure Policy, Blueprints, and Azure Resource Manager (ARM) templates. Hands-on experience in securing Azure Landing Zones, ensuring compliance with security best practices. Utilize Infrastructure-as-Code (IaC) tools such as Terraform and Ansible to automate cloud resource management. Prioritize platform automation over manual processes to minimize human error and enhance operational efficiency. Implement cost management and governance policies, leveraging Azure Cost Management and Azure Advisor to optimize cloud spending. Work collaboratively within an existing Azure team, contributing hands-on expertise in securing cloud environments. Conduct risk assessments, compliance audits, and security monitoring to proactively identify and resolve vulnerabilities. Qualifications: 10+ years of experience in cloud security and compliance within Microsoft Azure. Proven expertise in Infrastructure-as-Code (IaC) tools (Terraform, Ansible) for cloud security automation. Strong understanding of cloud security frameworks (e.g., CIS Benchmarks, NIST, ISO 27001). Proficiency in PowerShell, Azure CLI, and ARM templates for scripting and automation. Experience implementing Azure cost governance policies and optimizing cloud resources. Effective communication, collaboration, and problem-solving skills in cross-functional teams. US Citizenship is required.  Preferred Qualifications: Microsoft Azure certifications, such as Azure Security Engineer Associate or Azure Solutions Architect Expert. Hands-on experience with cloud security auditing, compliance enforcement, and risk mitigation. Background in government, research, or highly regulated industries is a plus.

CEIS | Clover Leaf Solutions is a small business headquartered in Albuquerque, New Mexico, with key offices in San Francisco, CA and Pittsburgh, PA, and we are growing. You can be a key part of our team and help us continue to build our capabilities long-term. Our government clients include Department of Energy facilities like Sandia National Laboratories, Lawrence Berkeley National Laboratory, and Los Alamos National Laboratory, while our commercial clients have included globally recognized firms. We specialize in Industrial Hygiene, Safety, Construction Management, and Project Management. We have open, transparent communication without layers of bureaucracy, while also having a strong team to provide backup. We offer health, dental, vacation/sick, and a 401k with a generous match.

Learn more about us at cloversolutions.us

CEIS | Clover Leaf is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, genetics, or protected Veteran status. Because eligibility for DOE clearance is required for this position, we ask the question about citizenship.