Sr. Cloud Security Engineer II (6306)
About The Position
As a Sr. Cloud Security Engineer II, you’ll serve as a technical leader for securing and scaling cloud platforms supporting a mission-critical federal program. This role focuses on cloud security architecture, DevSecOps automation, and secure platform enablement across commercial and government cloud environments. You will define secure patterns, embed security into CI/CD pipelines, and partner closely with platform, application, and compliance teams to ensure security is built in — not bolted on. This is a hands-on technical leadership role for an experienced cloud security engineer who enjoys designing scalable solutions and influencing security outcomes across teams with the goal to make an impact across the federal government. We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers. If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!
Requirements
- Active Secret security clearance
- 8+ years of experience in cybersecurity or cloud engineering, with 5+ years focused on cloud security
- Deep hands-on advanced experience securing and automating one or more cloud environments (AWS, Azure, GCP)
- Strong experience with native cloud security tools (AWS Security Hub, GuardDuty, Defender for Cloud, Azure Policy, etc.)
- Strong experience with infrastructure as code (Terraform, CloudFormation, ARM/Bicep) and integrating security into CI/CD pipelines (GitLab, GitHub Actions, etc.)
- Technical experience with IAM/RBAC, key management (KMS/Key Vault/Cloud KMS), networking (VPC/VNET), and encryption
- Familiarity aligning security controls with NIST 800-53, FedRAMP, CIS Benchmarks, or equivalent frameworks
- Strong communication and leadership skills and ability to influence technical and non-technical stakeholders
Responsibilities
- Cloud Security Architecture
- Design and guide secure cloud architectures across AWS, Azure, and/or GCP, including GovCloud and restricted environments.
- Define and maintain cloud security standards aligned with NIST 800-53, FedRAMP, and CIS Benchmarks.
- Lead architecture reviews, threat modeling, and secure design guidance for cloud services and workloads.
- DevSecOps & Automation
- Build and maintain Infrastructure as Code (Terraform preferred) to enforce security controls at scale.
- Integrate automated security testing into CI/CD pipelines (SAST, DAST, IaC, container scanning).
- Develop automated guardrails, policies, and remediation workflows to reduce manual effort and risk.
- Governance, Compliance & Visibility
- Support ATO and compliance efforts by embedding controls directly into cloud and pipeline designs.
- Partner with compliance teams and auditors to support evidence collection and continuous monitoring.
- Implement centralized logging, monitoring, and incident response across cloud environments.
- Technical Leadership & Collaboration
- Serve as a cloud security subject matter expert for engineers, architects, and stakeholders.
- Guide and mentor engineers on secure cloud development and automation practices.
- Collaborate across platform, application, and security teams to align security objectives.
Benefits
- Health, dental, and vision insurance
- 401(k) retirement plan with company match
- Paid time off (PTO) and holidays
- Parental Leave and dependent care
- Flexible work arrangements
- Professional development opportunities
- Employee assistance and wellness programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
