RemoteLeaf Logo
Log in Sign up

Sr. Cloud Security Engineer - FedRamp (Dallas, TX)

1 month ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS Azure CI/CD CloudFormation GCP HashiCorp Vault Kubernetes Linux Terraform
Apply Now
Zimperium

Zimperium

Mobile Security Solutions | Complete Mobile Security for Apps and Devices Zimperium is the only mobile security platform purpose built for enterprise, securing both mobile devices and applications so they can securely access data. Zimperium is a leadin...

Professional Services
251-1K
Founded 2010
$60M raised
View All Jobs 16

Description

  • Design, implement, and manage security controls across AWS, Azure, GCP, and OCI environments.
  • Serve as the subject matter expert for security automation using CloudFormation and/or Terraform.
  • Implement and enforce CIS Level 2 and DISA STIG hardening across Linux systems and Kubernetes clusters.
  • Configure, manage, and optimize cloud-native and third-party security tools such as Prisma Cloud, Orca, Google SecOps, and Palo Alto firewalls.
  • Deploy and manage WAF solutions, including F5 and cloud-native web application firewalls.
  • Integrate SAST, DAST, and SCA security testing into CI/CD pipelines to support DevSecOps practices.
  • Design and maintain secure storage and rotation of secrets, credentials, and API keys.
  • Conduct threat modeling and security reviews for new applications and services.
  • Participate in rotating on-call coverage for security incidents and operational issues.
  • Support audits by generating evidence, writing reports, and presenting technical findings to leadership.

Requirements

  • 8+ years of progressive IT experience, including at least 5 years in cloud security engineering in a multi-cloud environment.
  • Expert-level proficiency with Infrastructure as Code for security automation using Terraform and/or CloudFormation.
  • Experience securing at least three major cloud platforms among AWS, Azure, GCP, and OCI.
  • Proven expertise with CIS Level 2 and DISA STIG system hardening standards.
  • Extensive Linux administration experience and hands-on security experience with Kubernetes.
  • Experience with at least two of the following: Palo Alto Prisma Cloud, Orca, Google SecOps, and Palo Alto Next Generation Firewalls.
  • Hands-on experience with WAF solutions such as F5 or equivalent cloud-native services.
  • Strong working knowledge of DevSecOps principles and integrating security tools into CI/CD pipelines.
  • Experience with secret management tools such as HashiCorp Vault or AWS Secrets Manager.
  • Excellent written and verbal communication skills, including executive-level reporting and technical presentations.
  • Ability to operate independently and take ownership of critical responsibilities.
  • Preferred experience in regulated environments such as FedRAMP, DoD, government, or financial sectors.
  • Preferred experience implementing and maintaining controls for ISO 27001 and SOC 2.
  • Preferred experience with formal threat modeling and risk analysis.
  • Preferred experience in both large enterprise and startup/tech environments.
  • Relevant certifications such as CISSP, CCSP, or AWS/Azure/GCP Security Specializations are preferred.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Parachute Health

IT & Security Engineer (Contract)

Parachute Health 51-250 Health Care Providers & Services

Parachute Health is hiring a contractor for its IT & Security team to support secure, compliant, and efficient healthcare technology operations across identity, endpoint, network, and cloud security.

United States Contract Entry Level Security Engineer
AWS Bash CrowdStrike DHCP DNS GCP Git GitHub HIPAA Linux macOS OAuth PostgreSQL PowerShell Python SAML Splunk SQL TLS
3 hours, 39 minutes ago
MetroStar

Sr. Solutions Architect (DevSecOps) II (6444)

MetroStar 251-1K IT Services

MetroStar is seeking a Sr. Solutions Architect (DevSecOps) II to lead secure platform and cloud solution efforts for containerized, microservices-based environments while ensuring compliance, continuous monitoring, and incident response readiness.

United States Full-time Senior Platform Engineer Security Engineer
$166k-$202k
AWS CI/CD Cybersecurity DevSecOps Jenkins Kubernetes Microservices OpenShift SonarQube Splunk
5 hours, 4 minutes ago
Trility Consulting

Senior DevSecOps Consultant (Azure / Secrets Management)

Trility Consulting 51-250 Internet Software & Services

Trility Consulting is seeking a remote Senior DevSecOps Consultant to lead a short-term Azure security engagement focused on strengthening secrets management, application security, and repeatable DevSecOps standards across client environments.

United States Contract Lead DevOps Engineer Security Engineer
Azure CI/CD DevSecOps GitHub .NET Python Secrets Management SQL Server
5 hours, 43 minutes ago
Make-A-Wish America

Lead Manager, IT Security Engineer

Make-A-Wish America 1K-5K Diversified Consumer Services

Make-A-Wish is hiring an Information Technology Security professional to help protect the organization’s information, infrastructure, and stakeholders through enterprise security design, operations, and incident support.

United States Full-time Senior Security Engineer
$68k-$84k
Azure Windows Server
6 hours, 9 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers