Our client, a leading hospital in Philadelphia, is seeking a freelance Principal Cloud Security Engineer to join their team on a freelance to full-time basis through June 2026.

This is a hybrid role (80% remote, 20% onsite). Candidates must be located within a 2-hour radius of Philadelphia for occasional onsite work.

To be considered, you must have an active CISSP certification.
Cloud security certifications (AWS, Azure, GCP) are strongly preferred.

Principal Cloud Security Engineer Responsibilities:
Design, implement, and optimize cloud security controls and service lines to support clients cloud migration and hybrid environment.
Secure multi-cloud environments and manage identity and access management (IAM) in the cloud.
Collaborate with internal stakeholders, vendors, and cross-functional teams to maintain security technologies across network, endpoint, identity, and cloud infrastructure.
Drive continuous improvement of cloud security controls by validating alerts, triaging escalations, and fine-tuning detection/prevention capabilities.
Develop and maintain incident response plans, engineering runbooks, tabletop exercises, and system hardening guides.
Ensure alignment with client's policies and external frameworks (NIST SP 800-53, HIPAA, PCI-DSS, CIS Benchmarks, Microsoft CAF, AWS CAF, Google CAF).
Participate in design and governance forums for infrastructure, DevSecOps, and cloud-native application strategies.
Support audits, compliance assessments, and risk remediation plans.
Mentor junior InfoSec engineers and provide SME-level guidance on complex security issues.
Principal Cloud Security Engineer Requirements:
Education: Bachelors degree required (Computer Science, Information Systems preferred).

Experience:
12+ years in IT disciplines (architecture, network, application development, etc.).
6+ years in information security, regulatory compliance, and risk management.
3+ years in IAM, RBAC, user provisioning, and security awareness training.
Hands-on experience with cloud and virtualization technologies (Azure preferred).

Technical Skills:
Proficiency in EDR (Microsoft Defender), SIEM (Sentinel or Splunk), CSPM (e.g., Wiz), IAM (Entra ID), VPNs/NGFWs, NAC, and encryption protocols.
Knowledge of automation pipelines (Terraform, PowerShell), vulnerability management, and secure configuration management.
Familiarity with networking (WANs, LANs, TCP/IP) and clinical/financial systems (Epic, Lawson) a plus.
Strong understanding of regulatory frameworks (HIPAA, PCI, NIST, ISO 27000 series).
Excellent communication and collaboration skills; ability to work with matrixed teams and educate stakeholders.

In this position, you may have access to client or customer systems, confidential and/or proprietary information or data, including medical data. This position is onsite and requires you to work closely with other individuals in a collaborative team environment. Additionally, drug products may be present in the workplace.

Benefits

Creative Circle's Freelance Employee benefits package includes eligibility for Minimum Essential Coverage (MEC) medical plan, dental/vision/term life package, discount prescription program, critical illness, accident, tele-behavioral health, and 401(k) plan. Sick leave is provided to Candidates whose assignment work location is in a state or city subject to sick leave laws. A Minimum Value (MV) PPO medical plan, Employee Stock Purchase Plan, and paid holiday eligibility are based on length and dates of service.

Looking forward to receiving your resume through our website and going over the position with you. Clicking apply is the best way to apply, but you may also:

Email your resume in Word to:

cameron.little@jobalert.creativecircle.com
**Please do NOT change the email subject line in any way. You must keep the JobID: : CL9-1971657 -- in the email subject line for your application to be considered.***

Cameron Little - Senior Recruiter

For Creative Circle to represent you for this opportunity, you must be currently authorized to work in the United States without the need of employer sponsorship for a non-immigrant visa such as a H-1B, TN, or O visa. We do not support or provide training for STEM/OPT programs. Additionally, you must be physically located in and perform the work for our client in the United States.



This job was first posted by Creative Circle on 12/10/2025 and applications will be accepted on an ongoing basis until the position is filled or closed.

Creative Circle is an Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity or expression, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, or any other characteristic protected by law. Creative Circle will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable state and local law, including but not limited to the Los Angeles County Fair Chance Ordinance, the San Francisco Fair Chance Ordinance, and the California Fair Chance Act. If you need a reasonable accommodation in the application process, please contact your Recruiter (the person you'll be interviewing with) or a member of our Human Resources team to make arrangements. United Healthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Creative Circle.

Copyright 1999 - 2026. CreativeCircle, Inc. All rights reserved.PDN-a0ccbe6b-ec43-4acd-87f9-2653d435e48d