Cloud Security Engineer 

Location: Washington, DC (Primarily Onsite)
Clearance Required: Active Secret (Top Secret eligibility preferred)
Employment Type: Full-Time

Role Overview

We are seeking a Cloud Security Engineer to help design, build, and secure cloud environments supporting a mission-critical federal program. This role focuses on hands-on cloud security implementation and DevSecOps integration, working alongside platform engineers, developers, and compliance teams to embed security into cloud solutions from the start.

This is an excellent opportunity for a cloud or security engineer looking to deepen their cloud security expertise, gain exposure to regulated environments, and grow into more senior security or architecture roles.

Key Responsibilities

Cloud Security Engineering

• Implement and maintain security controls in AWS, Azure, or GCP environments, including commercial and government cloud regions.

• Apply and maintain security baselines aligned with CIS Benchmarks, NIST 800-53, and FedRAMP requirements.

• Contribute to secure architecture reviews and provide practical guidance for cloud workloads.

DevSecOps & Automation

• Develop and maintain Infrastructure as Code (Terraform preferred) to deploy and manage security configurations.

• Integrate security tooling into CI/CD pipelines, including SAST, DAST, IaC scanning, and container security.

• Build and improve automated guardrails and remediation workflows under senior engineer guidance.

Monitoring, Compliance & Response

• Implement centralized logging and monitoring to improve visibility across cloud environments.

• Support compliance and ATO efforts by embedding controls into cloud deployments and assisting with audit evidence.

• Participate in vulnerability remediation and incident response activities.

Collaboration & Growth

• Collaborate with cloud engineers, developers, and compliance teams to ensure security objectives are met.

• Serve as a hands-on resource for cloud security best practices within project teams.

• Learn and apply advanced cloud security patterns through mentorship and real-world delivery.

Required Qualifications

• Active Secret clearance

• Bachelor’s degree in Computer Science or related field, or equivalent experience

• 3–5 years of experience in cybersecurity or cloud engineering, with at least 2 years focused on cloud security

• Hands-on experience with at least one major cloud provider (AWS, Azure, or GCP)

• Experience with cloud-native security tools (e.g., Security Hub, Defender for Cloud, Google SCC)

• Experience with Infrastructure as Code (Terraform, CloudFormation, or similar)

• Basic scripting experience (Python, PowerShell, or Bash)

• Working knowledge of IAM, encryption, networking, and key management

• Familiarity with security frameworks such as NIST, CIS, or FedRAMP

Preferred Qualifications

• Experience integrating security into CI/CD pipelines

• Exposure to container security or Kubernetes hardening

• Cloud security certifications (AWS, Azure, or Google)

• Familiarity with zero trust principles and enterprise identity platforms

Why Join Us

• Hands-on role with real ownership in a regulated cloud environment

• Opportunity to grow into senior cloud security or architecture positions

• Mission-driven federal program with long-term stability

• Collaborative team environment with mentorship and technical depth