About this role
Lead cloud security architecture and information assurance efforts across multi-cloud environments, ensuring compliance with federal security frameworks and embedded security in CI/CD.
Key Responsibilities
- Deploy and configure security controls across AWS, Azure, and GCP environments
- Apply security baselines (CIS Benchmarks, NIST 800-53, FedRAMP)
- Develop and maintain Infrastructure as Code (Terraform, CloudFormation, or similar)
- Integrate security scanning tools into CI/CD pipelines
- Participate in incident response and vulnerability remediation activities
Technical Overview
Design and implement secure cloud architectures using AWS/Azure/GCP, use IaC (Terraform/CloudFormation), integrate SAST/DAST and container security into pipelines, and manage IAM, encryption, and key management with FedRAMP/NIST/CIS baselines.
Ideal Candidate
The ideal candidate is a senior security/ cloud architect with 8+ years of cybersecurity or cloud engineering experience, hands-on with AWS/Azure/GCP, and deep knowledge of cloud security tooling and compliance frameworks. They should hold an active Secret clearance and be capable of leading architecture and remediation efforts across multi-cloud environments.
Must-Have Skills
Bachelor's degree in Computer Science or related fieldor equivalent experience.At least 8 years of experience in cybersecurity or cloud engineering.Hands-on experience with at least one major cloud provider (AWSAzureor GCP).Familiarity with cloud-native security tools (e.g.AWS Security HubAzure DefenderGoogle SCC).Experience with Infrastructure as Code (TerraformCloudFormationor similar).Basic scripting skills (PythonPowerShellor Bash).Understanding of IAMencryptionnetworkingand key management in cloud environments.Knowledge of security frameworks such as NISTCISor FedRAMP.Minimum Secret Clearance required
Nice-to-Have Skills
Experience with CI/CD security integration and DevSecOps practices.Exposure to container security and Kubernetes hardening.Certifications such as AWS Certified Security - SpecialtyAzure Security Engineer Associateor Google Professional Cloud Security Engineer.Familiarity with zero trust principles and enterprise identity platforms.
Tools & Platforms
Amazon Web ServicesMicrosoft AzureGoogle Cloud PlatformTerraformCloudFormationAWS Security HubAzure DefenderGoogle Cloud Security Command CenterCI/CDKubernetes
Required Skills
cloud information assurance engineerAWSAmazon Web ServicesAzureMicrosoft AzureGCPGoogle Cloud PlatformTerraformCloudFormationInfrastructure as CodeSASTDASTIaC scanningcontainer securityKubernetesCI/CDDevSecOpsNIST 800-53CIS BenchmarksFedRAMPIAMencryptionkey managementPythonPowerShell
Hard Skills
cloud information assurance engineerAWSAmazon Web ServicesAzureMicrosoft AzureGCPGoogle Cloud PlatformTerraformCloudFormationInfrastructure as CodeSASTDASTIaC scanningcontainer securityKubernetesCI/CDDevSecOpsNIST 800-53CIS BenchmarksFedRAMPIAMencryptionkey managementPythonPowerShell
Soft Skills
communicationleadershipteam collaborationproblem solvinganalytical thinkingstakeholder managementcross-functional collaborationcritical thinking
Certifications
Preferred
AWS Certified Security - SpecialtyAzure Security Engineer AssociateGoogle Professional Cloud Security Engineer
Keywords for Your Resume
cloud information assurance engineercloud securityAmazon Web ServicesAWSMicrosoft AzureAzureGoogle Cloud PlatformGCPGoogle SCCAWS Security HubAzure DefenderGoogle Cloud Security Command CenterTerraformCloudFormationInfrastructure as CodeSASTDASTIaC scanningcontainer securityKubernetesCI/CDDevSecOpsNIST 800-53CIS BenchmarksFedRAMPIAMencryptionkey managementPythonPowerShell
Deal Breakers
Must have active Secret Clearance
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile