Steampunk is looking for a Senior Cloud Security Engineer to join the Office of the this position you will join a high performing team in developing solutions and conducting security operations for Steampunks internal IT this role you will be responsible for protecting Steampunk by developing engineering improving and maintaining technical security controls for our cloud-based environments.

This will include managing cross-platform security visibility using tools such as Wiz Cloud developing technical guardrails for our Azure and AWS cloud environments and implementing other security controls as required to protect our systems our people and Steampunk.

We are looking for an individual with an appetite for taking on new challenges and solving complex problems with new innovative solutions. Be an agent of change on a team committed to achieving people-focused mission-driven excellence.

• Directly implement and manage technical security of Steampunks internal cloud environments primarily in AWS and Azure.
• Continuously evaluate develop and improve Steampunks cloud security/governance and technical guardrails leveraging CNAPP platforms such as Wiz to maintain continuous visibility across cloud workloads identities and data.
• Serve as senior escalation point for complex cloud security challenges spanning data platforms AI systems governance performance and integration.
• Monitor cloud security systems and networks for anomalies using tools such as Wiz Microsoft Sentinel and native cloud-provider security services; take appropriate actions to identify respond to and prevent security incidents.
• Design and implement cloud security improvementsincluding CSPM policies runtime threat detection rules and vulnerability remediation workflows in Wizwith emphasis on protecting Steampunks reputation and sensitive information.
• Participate in our agile Scrum team as part of scrum events and in creating and completing user stories focused on improving cybersecurity.
• Present regular status updates and provide cross training to other team members.

Qualifications

• 7 years in security engineering and/or cloud engineering with significant hands-on cloud security ownership.
• Ability to quickly learn new skills tools technologies and scripting/programming languages as needed.
• Strong understanding of Infrastructure-as-Code (IaC) and proven ability to build reusable templates/modules.
• Ability to communicate complex topics clearly to executive-level leaders.
• Demonstrated experience personally performing the following activities:
  • Developing and managing cloud resources in Amazon Web Services (AWS) and Azure.
  • Implementing configuring and managing cloud security guidance and guardrails at scale.
  • Designing implementing configuring and managing cloud security platforms/tools such as Wiz Defender for Cloud AWS Security Hub or equivalentincluding improving detections performing remediation and tuning policies.
  • Investigating and remediating cloud security incidents and configuration issues in AWS and Azure to include identity network exposure data protection and workload protection.
  • Configuring and operationalizing CNAPP/CSPM tooling (e.g. Wiz) to enforce least-privilege detect misconfigurations and drive remediation workflows across cloud environments.
    • Note: Overseeing teams that performed this work does not meet these requirements. Your ability to personally perform these tasks will be the primary consideration for this role.

Preferred Qualifications

• Bachelors degree in a technical field (e.g. Computer Science Information Technology Cybersecurity or related field).
• At least one Associate-level or Expert-level technical certification for Microsoft Azure.
• At least one technical certification for Amazon Web Services (Solutions Architect Professional preferred).
• Experience supporting cloud security for DevSecOps.
• Hands-on experience administering and operating Wiz Cloud including connector deployment policy configuration CSPM remediation workflows and integration with SIEM/ticketing platforms.
• Proficiency in Wiz query language (WQL) to build custom threat detection rules executive dashboards and compliance reports.
• Experience integrating Wiz with CI/CD pipelines for shift-left security scanning of IaC and container images.
• Experience with Microsoft Sentinel or other SIEM platforms including writing KQL detection rules and building automated playbooks.
• Familiarity with cloud-native security services: AWS GuardDuty AWS Security Hub Amazon Inspector Microsoft Defender for Cloud and Azure Policy.
• Experience with endpoint and workload protection tools (e.g. CrowdStrike Falcon Microsoft Defender for Endpoint).
• Proficiency in scripting/automation languages (Python PowerShell Bash) for security tooling and workflow automation.

Steampunk relies on several factors to determine salary including but not limited to geographic location contractual requirements education knowledge skills competencies and experience. The projected compensation range for this position is $160000 to $180000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunks total compensation package for employees. Learn more about additional Steampunk benefits here.

Identity Statement

As part of the application process you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Steampunk is aChange Agentin the Federal contracting industry bringing new thinking to clients in the Homeland Federal Civilian Health and DoD sectors. Through ourHuman-Centered delivery methodology we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As anemployee owned company we focus on investing in our employees to enable them to do the greatest work of their careers and rewarding them for outstanding contributions to our growth. If you want to learn more about our story visit.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race color religion sex national origin disability status protected veteran status or any other characteristic protected by participates in the E-Verify program.