Cloud Security Engineer

NAIC•Kansas City, KS

6d•Hybrid

About The Position

The Security, Risk, and Compliance division of the National Association of Insurance Commissioners (NAIC) has an exciting opportunity for a Cloud Security Engineer. This position is responsible for defining, implementing, and maintaining the security architecture of the organization’s cloud and cloud-native environments. This role partners closely with Cloud Engineering, DevOps, Compliance, and Risk teams to ensure cloud platforms—including Kubernetes and emerging AI-enabled technologies—are designed and operated securely, in alignment with regulatory requirements, security best practices, and organizational risk tolerance. This is a full-time hybrid position, in a positive and flexible environment. Residency within 100 miles of the Kansas City office is required.

Requirements

Bachelor’s degree (B.A. or B.S.) from four-year College or university in a computer related field and 5+ years of experience in information security, with significant focus on cloud environments, and/or equivalent combination of education and technical experience.
Hands-on experience securing AWS (Azure and OCI experience are a plus).
Practical experience securing Kubernetes and containerized workloads.
Familiarity with infrastructure-as-code and CI/CD security concepts.
Strong working knowledge of: Cloud IAM and identity federation
Network security (VPCs/VNETs, firewalls, security groups)
Encryption, key management, and secrets handling
Ability to communicate complex security concepts clearly to technical and non-technical audiences.

Nice To Haves

Experience working in regulated or compliance-driven environments (e.g., SOC 2, GovRAMP, PCI, HIPAA).
Familiarity with frameworks such as NIST 800-53, CIS Benchmarks, or Zero Trust architectures.
Experience evaluating or securing AI/ML platforms or SaaS tools.
Experience with CSPM, container security, or cloud-native security tools (vendor-agnostic).
Relevant certifications (e.g., AWS Security Specialty, CCSK, CKS, CISSP) are a plus.

Responsibilities

Design, implement, and maintain secure cloud architectures across IaaS, PaaS, and SaaS platforms (e.g., AWS, Azure, OCI), including security guardrails and standards.
Develop and maintain cloud security standards and documentation and ensure cloud architecture designs align with said standards and risk management requirements.
Lead security architecture and controls for containerized and Kubernetes-based workloads, including cluster hardening and secure configuration, workload isolation and network policies, secrets management and key rotation, and container image security and supply chain integrity.
Collaborate with DevOps teams on container security tooling, runtime protection, and secure CI/CD pipelines.
Contribute to the development and architecture of an organizational AI security strategy, including governance, acceptable use, and risk controls.
Translate regulatory and compliance requirements (e.g., SOC 2, NIST, ISO 27001, GovRAMP) into actionable cloud security controls.
Evaluate and implement cloud security posture management (CSPM), container security, CI/CD security, and cloud-native security tools.