Cloud computing has become foundational to modern digital transformation, enabling scalable services across public, private, and hybrid infrastructures. However, the rapid adoption of cloud platforms has been accompanied by a rise in security breaches driven not by sophisticated exploits but by configuration errors. Misconfigured identity policies, storage permissions, network controls, and logging settings remain among the leading causes of data exposure in cloud environments. From a broad perspective, addressing these risks requires moving beyond manual security reviews toward systematic, enforceable governance mechanisms. This study narrows its focus to reducing cloud misconfiguration breaches through automated policy enforcement within hybrid environments spanning Amazon Web Services and Microsoft Azure. It examines how infrastructure-as-code, continuous compliance monitoring, and policy-as-code frameworks can be used to detect, prevent, and remediate insecure configurations in real time. The proposed approach integrates automated guardrails across identity and access management, network segmentation, encryption, and resource provisioning, ensuring consistent security posture across heterogeneous platforms. By embedding policy enforcement directly into deployment and operational workflows, organizations can minimize human error, improve auditability, and enhance resilience against misconfiguration-driven attacks. The findings highlight automated policy enforcement as a practical and scalable strategy for strengthening cloud security in complex AWS–Azure hybrid architectures at scale globally.