AI2IO is a premier engineering and consulting firm specializing in innovative, mission-critical solutions across hyperscale data centers, advanced infrastructure, and high-performance building systems. With over four decades of expertise, we partner with some of the world’s most influential companies to design and optimize environments that demand precision, scalability, and resilience.
Join us and be part of a team where your voice matters, your work makes an impact, and your growth is a shared priority.
Position Title: Cloud Security Administrator
Position Location: Remote – work virtually from anywhere in the United States
Salary
AI2IOrecognizes salary ranges from job boards do not necessarily reflect our pay ranges. In many instances, we out-compete those ranges for well-qualified candidates.
Job Summary
A Cloud Security Administrator is responsible for safeguarding the organization’s cloud infrastructure, data, and applications. This role includes managing identity and access controls, enforcing security policies, and continuously monitoring cloud environments for threats or misconfigurations. The Cloud Security Administrator responds to security incidents, ensures compliance with industry security frameworks (such as SOC 2 and NIST), and works with IT and DevOps teams to integrate security into every stage of cloud operations. Ultimately, they serve as the frontline defense to keep cloud services secure, resilient, and compliant. This position is internal-facing (no direct client contact) and operates as a member of the Security team.
Essential Functions
Security Controls & Compliance
- Implement and enforce security baselines and encryption standards across cloud services
- Align cloud configurations and policies with compliance frameworks (SOC 2, ISO 27001, NIST 800-171, FedRAMP, etc.) to meet regulatory and contractual security requirements
Monitoring & Incident Response
- Continuously monitor cloud environments using tools like Microsoft Defender for Cloud and SIEM platforms (e.g. Microsoft Sentinel) to detect threats and anomalies
- Review, investigate, and respond to security alerts or incidents, coordinating with the Security team to remediate issues and perform post-incident analysis
Configuration Hardening
- Ensure all cloud infrastructure components (VMs, containers, networks, storage, etc.) are configured securely following best practices (e.g. firewalls, patch management, network segmentation)
- Regularly audit and harden cloud configurations, addressing vulnerabilities or misconfigurations and applying necessary patches or updates promptly
Data Protection
- Manage and implement data protection measures including backup/recovery strategies, data loss prevention (DLP) policies, and encryption for data at rest and in transit
- Enforce data retention policies and access controls to protect sensitive information and ensure compliance with data privacy regulations
Automation & Policy Enforcement
- Utilize automation tools and scripts to enforce security policies and perform routine compliance checks (for example, using Azure Policy or CI/CD pipeline integrations)
- Develop and maintain security playbooks and automated responses for common cloud security events, ensuring consistent enforcement of security standards across environments
Collaboration
- Partner with DevOps, IT, and other security team members to embed cloud security best practices into all stages of system development and operational processes
- Collaborate with internal teams by providing guidance or training on secure cloud configurations and emerging threats
Performs other related duties as assigned.
Position Requirements
- Strong hands-on experience with cloud security tools and platforms (especially Microsoft Defender suite and Azure security services)
- Solid knowledge of Entra ID (Azure AD) administration, including identity and access management (IAM), role-based access control (RBAC), Conditional Access policies, and privilege management
- Experience securing Microsoft 365 services (Exchange Online, SharePoint, Teams) and Power Platform components, or similar SaaS applications
- Familiarity with securing cloud infrastructure in Azure or similar cloud environments – including virtual machines, containers, storage accounts, virtual networks, and use of security services like Key Vault
- Working knowledge of industry security frameworks and benchmarks (SOC 2, ISO 27001, NIST CSF/800-171, CIS) and how to apply them in cloud environments
- Experience with SIEM/SOAR tools (Microsoft Sentinel or equivalent) and incident response processes
- Strong analytical and problem-solving skills, with the ability to assess security risks and prioritize remediation efforts
- Excellent teamwork and communication skills, with the ability to collaborate effectively with technical and non-technical colleagues
- Demonstrated ability to manage multiple tasks, work under pressure, and adapt to evolving cloud technologies and threats
Travel/Relocation Requirements
- Up to 5% travel may be required, which could include trips to any of the 50 U.S. states
- Travel is defined as physically leaving home for work-related activities such as visiting other office locations, attending internal meetings or training sessions, and participating in industry conferences
Education/Experience Requirements
- Bachelor’s degree in Information Technology, Information Systems, Computer Science, or a related discipline, plus 5+ years of progressive IT or information security experience (with at least 2 years in a cloud security administration or similar role)
- Relevant security certifications (e.g. Microsoft Azure Security Engineer, CCSP, CISSP, or similar) are a plus, demonstrating a commitment to continuous learning in cloud security
Benefits
AI2IO offers a very competitive benefits package; highlights include
- Choice of comprehensive medical plans (including two PPO-style plans and a HDHP w/ HSA option)
- Flex spending accounts (FSA)
- Dental and vision plans
- Comprehensive medical, dental and vision benefits extended to spouse / domestic partner and dependent children up to age 26
- 401k with company match and self-directed brokerage account option
- PTO including additional paid time off during the last week of the year
- Company paid life insurance coverage for employees and their eligible dependents
- Short and long-term disability, AD&D coverage
- Professional development opportunities, tuition reimbursement and professional licensing assistance
- Paid parental leave after one year of employment
AI2IO is an EEO/Affirmative Action Employer and participates in the E-Verify program with the Department of Homeland Security. We encourage diversity in our workforce.
Are you ready to challenge yourself and redefine standards in the AEC industry? Apply now and join our award-winning team!
Notice To Third Party Agencies
AI2IO does not accept unsolicited resumes from recruiters, employment agencies, or other staffing services. Unsolicited resumes include any resume or hiring document sent to AI2IO in the absence of a signed Service Agreement where AI2IO has expressly requested recruitment/staffing services specific to the position at hand. Any unsolicited resumes, including those submitted to hiring managers or other business leaders, will become the property of AI2IO and AI2IO will have the right to hire that candidate without reservation – no fee or other compensation will be owed or paid to the recruiter, employment agency, or other staffing service.
