Information Security Analyst - TX, AZ, NC
Apex Systems, Chandler, AZ, United States
Information Security Analyst
The Security Configuration Baseline Engineer is responsible for designing, engineering, and operationalizing security configuration baselines across enterprise technology platforms. This role operates at the intersection of cloud security engineering, governance risk and compliance (GRC), and automation. The position focuses on converting policy requirements, industry standards, and risk mandates into codified, enforceable, and auditable security baselines rather than providing advisory architecture.
Key Responsibilities
Engineer, maintain, and operationalize security configuration baselines across cloud platforms using policy-as-code and Infrastructure as Code approaches.
Translate enterprise policies, regulatory requirements, and industry standards (CIS, NIST, ISO) into machine-enforceable security controls.
Implement preventative guardrails, detect configuration drift, and support remediation at scale.
Collaborate strategically with GRC, cloud platform, engineering, and audit teams to ensure traceability, defensibility, and compliance.
Develop automation and scripts with Python to support baseline validation, enforcement, exception handling, and reporting.
Produce clear, audit-ready documentation for internal governance, regulatory reviews, and external examinations.
Support enterprise governance processes including control validation, exception workflows, and continuous improvement of the cloud security posture.
Required Qualifications
5+ years of cloud security experience, including hands-on work with security configuration, hardening standards, and enterprise-scale cloud environments. A strong risk and control background of 3+ years is required, with demonstrated experience mapping security controls to industry standards such as NIST, CIS Benchmarks, and CSA within regulated environments. 3-5 years of experience with Cloud Security Posture Management is also required, including baseline engineering, drift detection, and governance.
2-4 years of software development experience with Python, including writing scripts to automate security baselines, validation, and reporting. Hands-on experience with Azure and/or Google Cloud Platform is necessary. A strong working knowledge of policy-as-code or guardrail frameworks is required.
Compensation & Benefits
A pay rate of $69.00/hr - $72.00/hr is offered. The position is a contract role with a duration of 12 months.
The Security Configuration Baseline Engineer is responsible for designing, engineering, and operationalizing security configuration baselines across enterprise technology platforms. This role operates at the intersection of cloud security engineering, governance risk and compliance (GRC), and automation. The position focuses on converting policy requirements, industry standards, and risk mandates into codified, enforceable, and auditable security baselines rather than providing advisory architecture.
Key Responsibilities
Engineer, maintain, and operationalize security configuration baselines across cloud platforms using policy-as-code and Infrastructure as Code approaches.
Translate enterprise policies, regulatory requirements, and industry standards (CIS, NIST, ISO) into machine-enforceable security controls.
Implement preventative guardrails, detect configuration drift, and support remediation at scale.
Collaborate strategically with GRC, cloud platform, engineering, and audit teams to ensure traceability, defensibility, and compliance.
Develop automation and scripts with Python to support baseline validation, enforcement, exception handling, and reporting.
Produce clear, audit-ready documentation for internal governance, regulatory reviews, and external examinations.
Support enterprise governance processes including control validation, exception workflows, and continuous improvement of the cloud security posture.
Required Qualifications
5+ years of cloud security experience, including hands-on work with security configuration, hardening standards, and enterprise-scale cloud environments. A strong risk and control background of 3+ years is required, with demonstrated experience mapping security controls to industry standards such as NIST, CIS Benchmarks, and CSA within regulated environments. 3-5 years of experience with Cloud Security Posture Management is also required, including baseline engineering, drift detection, and governance.
2-4 years of software development experience with Python, including writing scripts to automate security baselines, validation, and reporting. Hands-on experience with Azure and/or Google Cloud Platform is necessary. A strong working knowledge of policy-as-code or guardrail frameworks is required.
Compensation & Benefits
A pay rate of $69.00/hr - $72.00/hr is offered. The position is a contract role with a duration of 12 months.