About the Role
Cloud Security Tech Lead is responsible for leading and delivering day-to-day cloud security operations across Google Cloud Platform (GCP), Amazon Web Services (AWS), Microsoft Azure, and Oracle Cloud Infrastructure (OCI). This role combines hands-on technical execution with technical leadership, ensuring cloud security risks are accurately identified, prioritized, and remediated in alignment with business risk, Zero Trust principles, and regulatory requirements.
Cloud Security Tech Lead provides direct technical leadership to cloud security engineers and analysts while partnering closely with Security Operations, IT, Engineering, and Application teams to drive remediation accountability and continuous improvement. Operating within a global delivery model, this role serves as a key execution and escalation point for cloud security strategy, tooling optimization, automation, and analytics.
Roles and Responsibilities
Provide direct technical leadership and day-to-day oversight of cloud security operations across GCP (primary), AWS, Azure, and OCI.
Own and manage cloud security operations including configuration reviews, misconfiguration detection, prioritization, remediation tracking, and validation.
Serve as a key execution partner and escalation point for cloud security initiatives, ensuring alignment with enterprise security strategy and priorities.
Design, optimize, and maintain cloud security review and monitoring strategies using native cloud security tools, CSPM platforms, and integration with SIEM and SOAR systems.
Translate large-scale cloud security findings into actionable risk intelligence through dashboards, metrics, and executive reporting, incorporating threat intelligence and emerging vulnerabilities.
Drive risk-based prioritization of cloud security issues using threat intelligence, asset criticality, exposure, and business impact.
Partner with application owners, DevOps, and platform teams to provide clear remediation guidance and influence timely risk reduction decisions.
Ensure secure implementation and continuous improvement of IAM, network segmentation, encryption, logging, and monitoring controls across cloud platforms.
Lead and support secure architecture and design reviews for new and existing cloud workloads, championing Zero Trust principles and security-by-design practices.
Develop, enhance, and maintain automation, scripting, runbooks, and operational documentation to detect misconfigurations and enforce cloud security baselines.
Mentor and develop cloud security engineers and analysts, strengthening technical depth and operational maturity.
Provide advanced escalation support for complex cloud security findings, tooling issues, and remediation challenges.