Role:Cloud Security & Identity Engineer -REMOTE

Role:Cloud Security & Identity EngineerLocation:USA-REMOTEPosition SummaryThe Cloud Security & Identity Engineer will be responsible for designing, implementing, and maintaining secure identity, access management, and compliance controls for Oracle Cloud Infrastructure (OCI) environments operating under FedRAMP Moderate requirements. The role will lead identity federation, Microsoft Entra ID integration, encryption strategy, and cloud security governance initiatives.Key ResponsibilitiesDesign and implement cloud security architectures aligned with FedRAMP Moderate requirements.Configure and manage identity federation between OCI and Microsoft Entra ID (Azure AD).Implement and support Single Sign-On (SSO), Multi-Factor Authentication (MFA), and role-based access controls.Design and validate data encryption solutions for data at rest and data in transit.Conduct security assessments, vulnerability reviews, and compliance audits.Develop security policies, standards, and operational procedures.Monitor cloud environments for security threats and compliance violations.Collaborate with architects, DBAs, and infrastructure teams to ensure secure deployments.Support Authority to Operate (ATO) and compliance documentation efforts.Provide guidance on security best practices and incident response activities.Required QualificationsCISSP certification or OCI Security certification.Deep expertise in Microsoft Entra ID (Azure AD).Strong experience with SSO, federation, identity governance, and access management.Experience implementing FedRAMP Moderate security controls.Knowledge of OCI security services and cloud security best practices.Experience with encryption technologies and key management solutions.Strong understanding of compliance and risk management frameworks.Preferred QualificationsExperience supporting federal government or regulated cloud environments.Familiarity with NIST 800-53 security controls.Experience with OCI IAM, Vault, Cloud Guard, and Security Zones.Knowledge of hybrid cloud identity and security architectures.