**Job Description:** Miller® is about building things that matter. We lead the welding industry in building advanced, solution-focused products and meeting crucial needs for welding safety and health. We’re about the partnership and the work. Our products are designed with our users for manufacturing, fabrication, construction, aviation, motorsports, education, agriculture and marine applications. Miller Electric Mfg. LLC, is headquartered in Appleton, Wisconsin, and wholly owned by Illinois Tool Works (http://www.itw.com/) (NYSE: ITW). The company maintains its industry leadership by setting the standard for reliability, quality and responsiveness. Our tagline, “The Power of Blue®,” is inspired by the blue color of Miller equipment. The company began with an innovation that responded to customer needs, growing from a one-man operation in 1929, to the world’s largest manufacturer of arc welding products. Miller keeps the tradition alive by focusing on its top priority: people. **BASIC DESCRIPTION:** The Senior Cloud Security Engineer will play a critical role in the design, implementation, support, and enforcement of security controls across global cloud and hybrid network infrastructures. This role is responsible for overseeing daily cloud operations while ensuring optimal system performance, scalable capacity, redundancy, and high availability to support critical applications. The ideal candidate brings deep expertise in cloud networking, security protocols, and Zero Trust architecture, and will be responsible for securing network traffic, cloud connectivity, and inter-service communication in modern cloud-native environments. Working closely with the Information Security and local IT teams, the engineer will also act as a technical advisor on broader cloud initiatives, ensuring the implementation of network best practices and technologies while maintaining robust security and operational efficiency. **ESSENTIAL FUNCTIONS:** + Design and implement secure, scalable network architectures across public and hybrid cloud environments (AWS, Azure, GCP). + Manage and monitor environment performance and proactively identify optimization opportunities to enhance efficiency, scalability, reliability, and security. + Design, build and secure VPNs, VPC peering, transit gateways, private endpoints, and hybrid network solutions (on-prem to cloud). + Configure and manage cloud-native firewalls (e.g., AWS Network Firewall, Azure Firewall) and route tables to ensure traffic segmentation and control. + Design and implement zero trust architecture (ZTA) strategies, including identity-aware proxies, microsegmentation, and secure service mesh deployments. + Implement, configure, and optimize cloud-native and third-party threat detection tools (e.g., IDS/IPS, NDR, VPC flow logs, GuardDuty, Azure Defender) to monitor for malicious activity, misconfigurations, and anomalous behavior across cloud environments. + Automate network and security provisioning using tools like Terraform, Ansible, or CloudFormation. + Identify and remediate risks associated with network exposure, misconfiguration, and insecure cloud services. + Implement and manage security groups, NACLs, and security policies aligned with corporate standards and compliance frameworks. + Support investigation and response to cloud-based network threats and incidents. + Participate in change management process including development of change management plans for production upgrades. + Work closely with CloudOps, DevOps, and Security Engineering teams to ensure secure deployment pipelines and cloud service configurations. **Qualifications** **MINIMUM QUALIFICATIONS:** + 8+ years of experience in network security engineering, including at least 3 years focused on cloud environments. + Expert-level knowledge of network protocols, security controls, segmentation strategies, and VPN technologies. + Proven experience with cloud networking (VPCs, subnets, NAT, routing, peering) in AWS, Azure, or GCP. + Proven experience with next-generation firewalls, cloud-native security groups, NACLs, and traffic filtering. + Solid understanding of Zero Trust models, defense-in-depth, and layered security strategies. + Proficiency with infrastructure-as-code tools and scripting (e.g., Terraform, Python, Bash). + Familiarity with security standards and regulatory frameworks (NIST, CIS, ISO 27001, SOC 2). + Strong research, technical writing, and documentation skills. + Excellent interpersonal communication skills + **Must be legally authorized to work in the United States without Company sponsorship now and in the future.** **Ideal Qualifications:** + Experience designing and architecting cloud and hybrid environments + Experience in securing Kubernetes, service mesh (e.g., Istio), and container networking. + Knowledge of SD-WAN or SASE architecture. + Background in enterprise-scale hybrid or multi-cloud deployments. + Experience with cloud-native logging and monitoring (e.g., GuardDuty, CloudTrail, Azure Monitor, VPC flow logs). + Certifications such as: + Azure Network Engineer Associate + CISSP, CCNP Security, or equivalent experience **Compensation Information:** $106,000 - $133,000 _ITW is an equal opportunity employer. We value our colleagues’ unique perspectives, experiences and ideas and create workplaces where everyone can develop their careers and perform to their full potential._ _As an equal employment opportunity employer, ITW is committed to equal employment opportunity and fair treatment for employees, beginning with the hiring process and continuing through all aspects of the employment relationship._ _All qualified applicants will receive consideration for employment without regard to race, color, sex, gender identity, sexual orientation, religion, national origin, age, disability, protected Veteran status or any other characteristic protected by applicable federal, state, or local laws._