Jobs · Information Technology · Kansas

Senior Cloud Security Engineer

Shamrock Trading Corporation · Overland Park, KS · 2 wk ago
On-siteInformation TechnologyFull-time

About the role

We are seeking a Senior Cloud Security Engineer to drive the implementation and continuous improvement of security controls across our cloud environments. This role focuses on cloud security posture, exposure management, and secure enablement, working in close partnership with Cloud Engineering and Security Architecture teams.

Responsibilities

  • Own and continuously improve Cloud Security Posture (CSPM/CNAPP) capabilities.
  • Identify, prioritize, and remediate cloud misconfigurations and exploitable risks.
  • Analyze and reduce attack paths across cloud environments.
  • Drive risk-based vulnerability management focused on real exposure.
  • Operationalize and manage tools such as Wiz, Prisma Cloud, Defender for Cloud, Tenable Cloud Security, or equivalent.
  • Partner with Cloud Engineering and Security Architecture to embed security into cloud platform design and delivery.
  • Translate architecture standards into practical, enforceable security controls and guardrails.
  • Identify gaps between intended architecture and deployed configurations.
  • Provide actionable feedback to improve cloud security standards and patterns.
  • Integrate security into CI/CD pipelines and engineering workflows.
  • Build and maintain automated detection and remediation pipelines.
  • Enable developers to remediate security findings quickly and effectively.
  • Leverage Infrastructure as Code (IaC) tooling to enforce policies.
  • Develop detection use cases for cloud-based threats and misconfigurations.
  • Partner with SOC and security teams to improve cloud threat visibility and response.
  • Continuously assess cloud environments for emerging risks and attack techniques.
  • Define and track cloud security posture metrics, including attack path reduction, misconfiguration trends, mean time to remediation (MTTR).
  • Support risk assessments and align controls with security standards and frameworks.

Requirements

  • 6–8+ years in cybersecurity, with strong focus on cloud security engineering.
  • Hands-on experience with AWS, Azure, or GCP.
  • Experience with CSPM/CNAPP platforms.
  • Strong understanding of: IAM and privilege escalation risks, cloud networking and segmentation, and data protection and encryption.
  • Experience with: infrastructure as Code (Terraform, CloudFormation, etc.), kubernetes/container security, and CI/CD pipeline security.
  • Strong scripting/automation skills (Python, Bash, or similar).

Qualifications

  • Experience with cloud exposure management or attack path analysis.
  • Familiarity with MITRE ATT&CK and cloud attack techniques.
  • Certifications such as CCSP, CISSP, or cloud security specialties.

Similar jobs