Senior Cloud Security Engineer

Overview Steampunk is looking for a Senior Cloud Security Engineer to join the Office of the CIO. In this position, you will join a high performing team in developing solutions and conducting security operations for Steampunku2019s internal IT systems. In this role, you will be responsible for protecting Steampunk by developing, engineering, improving, and maintaining technical security controls for our cloud-based environments. This will include managing cross-platform security visibility using tools such as Wiz Cloud, developing technical guardrails for our Azure and AWS cloud environments, and implementing other security controls as required to protect our systems, our people, and Steampunk. We are looking for an individual with an appetite for taking on new challenges and solving complex problems with new innovative solutions. Be an agent of change on a team committed to achieving people-focused, mission-driven excellence. Contributions + Directly implement and manage technical security of Steampunku2019s internal cloud environments, primarily in AWS and Azure. + Continuously evaluate, develop, and improve Steampunku2019s cloud security/governance and technical guardrails, leveraging CNAPP platforms such as Wiz to maintain continuous visibility across cloud workloads, identities, and data. + Serve as senior escalation point for complex cloud security challenges spanning data platforms, AI systems, governance, performance, and integration. + Monitor cloud security systems and networks for anomalies using tools such as Wiz, Microsoft Sentinel, and native cloud-provider security services; take appropriate actions to identify, respond to, and prevent security incidents. + Design and implement cloud security improvementsu2014including CSPM policies, runtime threat detection rules, and vulnerability remediation workflows in Wizu2014with emphasis on protecting Steampunku2019s reputation and sensitive information. + Participate in our agile Scrum team as part of scrum events, and in creating and completing user stories focused on improving cybersecurity. + Present regular status updates and provide cross training to other team members. Qualifications Qualifications + 7+ years in security engineering and/or cloud engineering, with significant hands-on cloud security ownership. + Ability to quickly learn new skills, tools, technologies, and scripting/programming languages as needed. + Strong understanding of Infrastructure-as-Code (IaC) and proven ability to build reusable templates/modules. + Ability to communicate complex topics clearly to executive-level leaders. + Demonstrated experience personally performing the following activities: + Developing and managing cloud resources in Amazon Web Services (AWS) and Azure. + Implementing, configuring, and managing cloud security guidance and guardrails at scale. + Designing, implementing, configuring, and managing cloud security platforms/tools such as Wiz, Defender for Cloud, AWS Security Hub, or equivalentu2014including improving detections, performing remediation, and tuning policies. + Investigating and remediating cloud security incidents and configuration issues in AWS and Azure, to include identity, network exposure, data protection, and workload protection. + Configuring and operationalizing CNAPP/CSPM tooling (e.g., Wiz) to enforce least-privilege, detect misconfigurations, and drive remediation workflows across cloud environments. + _Note: Overseeing teams that performed this work does not meet these requirements. Your ability to personally perform these tasks will be the primary consideration for this role._ Preferred Qualifications + Bacheloru2019s degree in a technical field (e.g., Computer Science, Information Technology, Cybersecurity, or related field). + At least one Associate-level or Expert-level technical certification for Microsoft Azure. + At least one technical certification for Amazon Web Services (Solutions Architect Professional preferred). + Experience supporting cloud security for DevSecOps. + Hands-on experience administering and operating Wiz Cloud, including connector deployment, policy configuration, CSPM remediation workflows, and integration with SIEM/ticketing platforms. + Proficiency in Wiz query language (WQL) to build custom threat detection rules, executive dashboards, and compliance reports. + Experience integrating Wiz with CI/CD pipelines for shift-left security scanning of IaC and container images. + Experience with Microsoft Sentinel or other SIEM platforms, including writing KQL detection rules and building automated playbooks. + Familiarity with cloud-native security services: AWS GuardDuty, AWS Security Hub, Amazon Inspector, Microsoft Defender for Cloud, and Azure Policy. + Experience with endpoint and workload protection tools (e.g., CrowdStrike Falcon, Microsoft Defender for Endpoint). + Proficiency in scripting/automation languages (Python, PowerShell, Bash) for security tooling and workflow automation. About steampunk Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $160,000 to $180,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunku2019s total compensation package for employees. Learn more about additional Steampunk benefits here. Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Steampunk is a Change Agent in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our Human-Centered delivery methodology , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an employee owned company , we focus on investing in our employees to enable them to do the greatest work of their careers u2013 and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit . _We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program._ Refer a Friend ( Need help finding the right job? We can recommend jobs specifically for you Job Location _US-VA-McLean_ Posted Date _1 day ago_ _(3/13/2026 5:47 PM)_ _Job ID_ _7496_ _Clearance Requirement_ _None_

Created: 2026-03-16