Infrastructure Cloud Governance engineer required Location: Charlotte, NC (Hybrid)

[Praveen 3SBC]

Infrastructure Cloud Governance engineer required

Location: Charlotte, NC (Hybrid)

Duration: 1 year

Hitachi digital

Experience Level: Senior (5 to 8 years)

Job Overview

Senior Cloud Governance Engineer –Platform Engineering

We are building an enterprise-scale internal developer platform designed to eliminate infrastructurefriction. Our goal is to provide application teams with a seamless experience that balances speed andfl exibility with strict security, compliance, and cost governance.

As a Senior Cloud Governance Engineer, you will own the compliance and audit posture of ourcloud platform.
You will ensure that the infrastructure we provision meets regulatory, security, andorganizational standards — and that we can prove it. You will work closely with our platformarchitects and engineering teams to embed governance directly into our Terraform patterns,automate evidence collection, and maintain continuous audit readiness.

Key Responsibilities

Compliance & Audit Readiness: Own the end-to-end compliance lifecycle for cloudinfrastructure. Ensure environments are continuously aligned with organizational policies,regulatory frameworks (SOC 2, ISO 27001, NIST, CIS Benchmarks), and internal standards.
Policy-as-Code: Translate compliance requirements into enforceable Azure Policy defi nitions,Terraform validation rules, and automated guardrails that prevent non-compliant resources frombeing deployed.

Evidence Collection & Automation: Design and implement automated workfl ows for collecting,organizing, and presenting audit evidence. Reduce manual eff ort during audit cycles by buildingrepeatable, auditable processes.

Terraform Pattern Governance: Review and provide guidance on infrastructure-as-codepatterns to ensure they meet compliance, security, and operational standards. Propose requiredupdates to existing Terraform modules when standards evolve.

Security Posture Management: Operate and optimize cloud security posture management(CSPM) tooling, primarily Wiz, to identify misconfi gurations, prioritize risk, and drive remediationwith engineering teams.
Monitoring & Reporting: Build and maintain compliance dashboards and workbooks using Azure Monitor and Azure Workbooks to provide real-time visibility into governance postureacross subscriptions and environments.

AI-Powered Governance Tooling: Design and build AI/LLM-driven tools that accelerategovernance workfl ows — such as automated control mapping, natural-language policy interpretation, intelligent evidence summarization, and anomaly detection across compliancedata.

GRC Program Support: Maintain and operate governance, risk, and compliance (GRC)processes — including risk register management, control testing schedules, exception tracking,and remediation SLA monitoring. Ensure alignment between cloud infrastructure controls andenterprise GRC frameworks.

Cross-Functional Collaboration: Partner with platform architects, security teams, andapplication owners to interpret audit fi ndings, recommend remediation paths, and ensuregovernance requirements are practical and achievable.

Required Skills & Experience

GRC Fundamentals: Solid understanding of governance, risk, and compliance frameworks.Experience with risk assessment methodologies, control mapping, exception management, andworking with GRC platforms (ServiceNow GRC, Archer, or similar).

IT Audit Experience: Hands-on participation in both internal and external IT audits — scopingcontrols, gathering evidence, responding to auditor inquiries, and driving remediation of fi ndingsto closure.

Cloud Compliance Expertise: Deep understanding of compliance frameworks (SOC 2, ISO27001, FedRAMP, NIST, CIS) and how they map to cloud infrastructure confi gurations andcontrols.

Azure Governance Tooling: Strong profi ciency with Azure Policy, Azure Monitor, AzureWorkbooks, Microsoft Defender for Cloud, and Management Groups/Subscription governancepatterns.

CSPM Tools (Wiz): Experience operating Wiz or comparable CSPM platforms (Prisma Cloud,Orca) for vulnerability detection, compliance scanning, and risk prioritization.

Infrastructure as Code (Terraform): Solid understanding of Terraform. You can read, review,and recommend changes to HCL modules to enforce compliance standards — not just fl agviolations after the fact.

Automation & Scripting: Ability to automate evidence collection and reporting workfl ows usingscripting (Python, PowerShell, Bash) and Azure-native automation tools (Logic Apps, AzureFunctions, Azure Automation).

AI/LLM Application Development: Experience building internal tools or workfl ows leveraginglarge language models — prompt engineering, RAG patterns, or agent-based automation appliedto operational or compliance use cases.

Communication & Infl uence: You can translate technical audit fi ndings into clear remediationguidance for engineering teams and articulate compliance posture to leadership and auditors.

Top 5 Must-Have Skills

1. CSPM Tools

2. python

3. Azure Policy

4. Azure Monitor

5. AzureWorkbooks

Additional Skills

Microsoft Defender for Cloud and Management Groups/Subscription governancepatterns teams compliance terraform azure solid python powershell bash communication leadership nist control mapping

Thank you,

Have a great day.

Praveen Giri

Senior Talent Acquisition Recruiter

3S Business Corporation (3SBC)

Email: pravee...@3sbc.com    Website: www.3sbc.com

Hangouts: pgprave...@gmail.com 

[Alfaz]

Consultant Submission Details:

 

CONSULTANT 1)  Information Security & Cyber Security Engineer | Security Operations Center (SOC) | Vulnerability Management | Threat & Vulnerability

 

Name:                                 Mohammed Abdul Qadeer Quraishi
Date of Birth:                     09/1990
Relocate:                             Yes
Current Location:              Chicago, IL
Face-to-Face:                    Yes
Work Authorization:       H1B
Total Work Experience:  9.5 Years
Passport Number:           WILL BE PROVIDED
Skype ID:                            WILL BE PROVIDED
LinkedIn ID:                       WILL BE PROVIDED
SSN (Last 4 digits):           WILL BE PROVIDED

 

CONSULTANT 2)  Cybersecurity Analyst | SOC Analyst | Cloud Security Analyst (AWS / Azure / GCP) | Security Operations (SOAR)|Incident Response | Threat Detection Analyst | SIEM Engineer (Splunk / ArcSight) | Vulnerability | Endpoint Security Analyst (EDR Focus) | GRC Security Analyst (Compliance + Risk)

 

Name:                                Amrutha Ginkala
Location:                            Jersey City, NJ
Relocate:                           Yes

Visa Status:                       OPT EAD
Last 4 Digits of SSN:         WILL BE PROVIDED
Date of Birth:                   Aug-1996
Passport Num:                 WILL BE PROVIDED
LinkedIn:                            WILL BE PROVIDED
Skype ID:                           WILL BE PROVIDED

Visa:                                    Stem OPT
Education:                         Master’s Degree, 2024
Total Experience:             7 Years

 

Thanks & Regards

 

Alfaz Karaami

TEK TREE LLC

Email:      al...@tektreeinc.com

Phone:     302-248-8015

LinkedIn : https://www.linkedin.com/in/alfazkaraami/

Website:  www.tektreeinc.com

Address:  1106 Drummond Plaza

                Newark, DE 19711

 

 

 

 

If you wish to opt out from our emails, please click here to Unsubscribe.

[alfaz.te...@gmail.com]