{"schemaVersion":"jobsearcher.job.v1","id":"5b5b46705cb4ec61eae990e5","url":"https://jobsearcher.com/jobs/5b5b46705cb4ec61eae990e5","canonicalUrl":"https://jobsearcher.com/jobs/5b5b46705cb4ec61eae990e5","title":"Senior Cloud Security Engineer","description":"POSITION SUMMARY:\n\nCODICE seeks an experienced Senior Cloud Security Engineer to join our team. The ideal candidate will be responsible for securing, managing, and operating an AWS cloud environment, with a focus on container-based deployments. This role requires a deep understanding of cloud security best practices, extensive experience with AWS services, and the ability to implement and maintain robust security controls in a dynamic cloud environment.\n\nESSENTIAL FUNCTIONS\n\nDuties and Responsibilities\nDeploy and maintain AWS cloud security controls as established by the client.\nIdentify, deploy, and maintain necessary cloud security controls to ensure secure operation of the client’s AWS environment(s).\nManage source-to-image container-based deployment models and image-stream container management.\nOversee automated CI pipeline management and automated security scans, especially during container image building.\nCreate and manage cloud infrastructure through Infrastructure as Code (IaC) practices.\nSupport GitOps operational model, managing infrastructure through pull requests.\nImplement and support deployment to multiple container-based cluster orchestration frameworks.\nApply business security rules through automated \"operator agent\" systems.\nImplement and manage cloud-native container networking interfaces and network-level isolation.\nEnsure zero-downtime scaling and upgrades of cloud systems.\nImplement and manage backups of all stateful components with fine-grained restoration capabilities.\nManage secrets using cloud-native Key Management Service (KMS) stores.\nImplement and maintain auditing capabilities to view infrastructure divergence from IaC.\nPlan and execute zero-downtime migrations of production environments.\nImplement and support automated approval-based continuous deployment (CD) processes.\nDevelop and maintain a chaos operations model to ensure system robustness.\nImplement and manage mutual TLS across all container communications in the cluster.\nDevelop and maintain full dashboard visibility on the cluster.\nImplement automatic graphing of network communication patterns and dependencies.\nDesign and support service mesh networking models.\nImplement read-write-many distributed storages solutions cluster-wide.\nDesign and implement disaster recovery solutions in different cloud regions (RTO/RPO 1 hour).\nManage and analyze security logs, supporting the client’s IT staff in monitoring and conducting in-depth analysis.\nCollaborate with the client Privacy Officer to manage incident response in the event of a data breach.\nMaintain a centralized repository for log collection and analysis, ensuring constant monitoring to identify potential threats and vulnerabilities.\n\nKnowledge, Skills and Abilities\n\nAdvanced understanding of AWS cloud services and architecture\nIn-depth knowledge of cloud security best practices and technologies\nComprehensive understanding of container-based environments and their security implications\nThorough knowledge of Infrastructure as Code (IaC) principles and practices\nStrong understanding of networking concepts, including VPNs, firewalls, and service mesh architectures\nDeep knowledge of encryption technologies and their applications in cloud environments\nFamiliarity with industry standards and regulations such as NIST, HIPAA, and SOC 2\nUnderstanding of CI/CD pipelines and their security considerations\nKnowledge of GitOps principles and practices\nUnderstanding of disaster recovery concepts and strategies in cloud environments\nKnowledge of log management and analysis techniques\nProficiency in implementing and managing AWS security services (e.g., AWS Security Hub, Amazon GuardDuty, Amazon Inspector)\nAbility to design and implement secure cloud architectures\nSkill in managing and securing container-based deployments\nProficiency in writing and managing Infrastructure as Code (e.g., using tools like Terraform or CloudFormation)\nAbility to implement and manage automated CI/CD pipelines with integrated security checks\nSkill in implementing and managing Kubernetes or other container orchestration platforms\nProficiency in implementing zero-trust security models in cloud environments\nAbility to design and implement robust backup and disaster recovery solutions\nSkill in implementing and managing service mesh architectures\nProficiency in log analysis and security event management\nAbility to conduct thorough security assessments and audits\nSkill in implementing chaos engineering principles to ensure system robustness\nStrong problem-solving and analytical thinking capabilities\nExcellent verbal and written communication skills, including the ability to explain complex technical concepts to non-technical stakeholders\nAbility to work effectively in cross-functional teams and collaborate with various departments\nCapacity to manage multiple projects and priorities in a fast-paced environment\nAbility to stay current with rapidly evolving cloud technologies and security threats\nStrong attention to detail, especially when implementing and auditing security controls\nAbility to think creatively to develop innovative solutions to complex security challenges\nCapacity to work under pressure, particularly during security incidents or critical system updates\nAbility to mentor and guide junior team members on cloud security best practices\nStrong ethical standards and ability to handle sensitive information with discretion\nAbility to adapt quickly to new technologies and methodologies in cloud security\nCapacity for continuous learning and professional development in the rapidly evolving field of cloud security\nQUALIFICATIONS\n\nRequired Education:\nBachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.\nRequired Experience:\nMinimum of 8 years of experience in IT security, with a focus on designing and implementing security architectures for cloud environments.\nProficiency with AWS Cloud Platform and deep understanding of cloud security best practices and technologies.\nExtensive experience with security technologies, including firewalls, VPNs, IDS/IPS, WAFs, SIEM, and endpoint security solutions.\nStrong knowledge of encryption technologies and AWS security services such as Amazon Cognito, AWS Security Hub, Amazon GuardDuty, and Amazon Inspector.\nFamiliarity with industry standards and regulations such as NIST, HIPAA, and SOC 2.\nExperience in conducting security assessments and audits.\nRequired Licensure/ Certification:\n\nAWS Certified Security – Specialty (earned within the past 5 years)\n\nPreferred Certifications (one or more)\nCertified Information Systems Security Professional (CISSP)\nCertified Cloud Security Professional (CCSP)\nCertified Information Security Manager (CISM)\nCertified Information Systems Auditor (CISA)","company":"Codice","rawCompany":"codice","city":"Washington","state":"DC","isRemote":false,"isActive":false,"createdAt":"2026-04-12T20:47:25.288Z","occupations":[{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1252.00","title":"Software Developers","slug":"software-developers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"},{"code":"541519","title":"Other Computer Related Services","slug":"other-computer-related-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Senior Cloud Security Engineer","description":"POSITION SUMMARY:\n\nCODICE seeks an experienced Senior Cloud Security Engineer to join our team. The ideal candidate will be responsible for securing, managing, and operating an AWS cloud environment, with a focus on container-based deployments. This role requires a deep understanding of cloud security best practices, extensive experience with AWS services, and the ability to implement and maintain robust security controls in a dynamic cloud environment.\n\nESSENTIAL FUNCTIONS\n\nDuties and Responsibilities\nDeploy and maintain AWS cloud security controls as established by the client.\nIdentify, deploy, and maintain necessary cloud security controls to ensure secure operation of the client’s AWS environment(s).\nManage source-to-image container-based deployment models and image-stream container management.\nOversee automated CI pipeline management and automated security scans, especially during container image building.\nCreate and manage cloud infrastructure through Infrastructure as Code (IaC) practices.\nSupport GitOps operational model, managing infrastructure through pull requests.\nImplement and support deployment to multiple container-based cluster orchestration frameworks.\nApply business security rules through automated \"operator agent\" systems.\nImplement and manage cloud-native container networking interfaces and network-level isolation.\nEnsure zero-downtime scaling and upgrades of cloud systems.\nImplement and manage backups of all stateful components with fine-grained restoration capabilities.\nManage secrets using cloud-native Key Management Service (KMS) stores.\nImplement and maintain auditing capabilities to view infrastructure divergence from IaC.\nPlan and execute zero-downtime migrations of production environments.\nImplement and support automated approval-based continuous deployment (CD) processes.\nDevelop and maintain a chaos operations model to ensure system robustness.\nImplement and manage mutual TLS across all container communications in the cluster.\nDevelop and maintain full dashboard visibility on the cluster.\nImplement automatic graphing of network communication patterns and dependencies.\nDesign and support service mesh networking models.\nImplement read-write-many distributed storages solutions cluster-wide.\nDesign and implement disaster recovery solutions in different cloud regions (RTO/RPO 1 hour).\nManage and analyze security logs, supporting the client’s IT staff in monitoring and conducting in-depth analysis.\nCollaborate with the client Privacy Officer to manage incident response in the event of a data breach.\nMaintain a centralized repository for log collection and analysis, ensuring constant monitoring to identify potential threats and vulnerabilities.\n\nKnowledge, Skills and Abilities\n\nAdvanced understanding of AWS cloud services and architecture\nIn-depth knowledge of cloud security best practices and technologies\nComprehensive understanding of container-based environments and their security implications\nThorough knowledge of Infrastructure as Code (IaC) principles and practices\nStrong understanding of networking concepts, including VPNs, firewalls, and service mesh architectures\nDeep knowledge of encryption technologies and their applications in cloud environments\nFamiliarity with industry standards and regulations such as NIST, HIPAA, and SOC 2\nUnderstanding of CI/CD pipelines and their security considerations\nKnowledge of GitOps principles and practices\nUnderstanding of disaster recovery concepts and strategies in cloud environments\nKnowledge of log management and analysis techniques\nProficiency in implementing and managing AWS security services (e.g., AWS Security Hub, Amazon GuardDuty, Amazon Inspector)\nAbility to design and implement secure cloud architectures\nSkill in managing and securing container-based deployments\nProficiency in writing and managing Infrastructure as Code (e.g., using tools like Terraform or CloudFormation)\nAbility to implement and manage automated CI/CD pipelines with integrated security checks\nSkill in implementing and managing Kubernetes or other container orchestration platforms\nProficiency in implementing zero-trust security models in cloud environments\nAbility to design and implement robust backup and disaster recovery solutions\nSkill in implementing and managing service mesh architectures\nProficiency in log analysis and security event management\nAbility to conduct thorough security assessments and audits\nSkill in implementing chaos engineering principles to ensure system robustness\nStrong problem-solving and analytical thinking capabilities\nExcellent verbal and written communication skills, including the ability to explain complex technical concepts to non-technical stakeholders\nAbility to work effectively in cross-functional teams and collaborate with various departments\nCapacity to manage multiple projects and priorities in a fast-paced environment\nAbility to stay current with rapidly evolving cloud technologies and security threats\nStrong attention to detail, especially when implementing and auditing security controls\nAbility to think creatively to develop innovative solutions to complex security challenges\nCapacity to work under pressure, particularly during security incidents or critical system updates\nAbility to mentor and guide junior team members on cloud security best practices\nStrong ethical standards and ability to handle sensitive information with discretion\nAbility to adapt quickly to new technologies and methodologies in cloud security\nCapacity for continuous learning and professional development in the rapidly evolving field of cloud security\nQUALIFICATIONS\n\nRequired Education:\nBachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.\nRequired Experience:\nMinimum of 8 years of experience in IT security, with a focus on designing and implementing security architectures for cloud environments.\nProficiency with AWS Cloud Platform and deep understanding of cloud security best practices and technologies.\nExtensive experience with security technologies, including firewalls, VPNs, IDS/IPS, WAFs, SIEM, and endpoint security solutions.\nStrong knowledge of encryption technologies and AWS security services such as Amazon Cognito, AWS Security Hub, Amazon GuardDuty, and Amazon Inspector.\nFamiliarity with industry standards and regulations such as NIST, HIPAA, and SOC 2.\nExperience in conducting security assessments and audits.\nRequired Licensure/ Certification:\n\nAWS Certified Security – Specialty (earned within the past 5 years)\n\nPreferred Certifications (one or more)\nCertified Information Systems Security Professional (CISSP)\nCertified Cloud Security Professional (CCSP)\nCertified Information Security Manager (CISM)\nCertified Information Systems Auditor (CISA)","datePosted":"2026-04-12T20:47:25.288Z","dateModified":"2026-04-12T20:47:25.288Z","hiringOrganization":{"@type":"Organization","name":"Codice","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Washington","addressRegion":"DC","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"5b5b46705cb4ec61eae990e5"},"url":"https://jobsearcher.com/jobs/5b5b46705cb4ec61eae990e5"}}