Sr Cybersecurity Engineer - US Federal
About The Position
We are seeking a Sr Cybersecurity Engineer to join our Platform Security Engineering team. This role is responsible for the architecture, engineering, and maintenance of systems that protect the Workday product, operating entirely within AWS. You will treat "Security as Code," ensuring our Vulnerability Management, SIEM, and SOAR tools are robust, scalable, and automated. You will be the primary engineering partner to our SOC, building the high-fidelity tools they rely on to keep our customers safe. This role supports contracts with the U.S. Federal Government, requiring all personnel on these contracts to be United States citizens. The position involves designing and maintaining the lifecycle of our core security stack (Vulnerability Management, SIEM, and SOAR) in a native AWS environment, securing, managing, and monitoring Kubernetes clusters and containerized workloads, and ensuring tooling scales with containerized infrastructure. You will use tools like Terraform, CloudFormation, or CDK for infrastructure deployment and management, leverage Python for tool integration and custom logic, and utilize AI tools and LLMs to accelerate development and automate tasks. The role also includes transforming complex security telemetry into actionable, visual insights through dashboard creation and integrating security tooling into the developer workflow.
Requirements
- Deep experience engineering within AWS (Compute, Storage, Networking, and Security services).
- Strong hands-on experience with Kubernetes (K8s) and Docker.
- Understanding of how to secure containerized environments and manage their lifecycle.
- Advanced skills in Python.
- Proven experience with Infrastructure as Code (IaC) (e.g., Terraform).
- Comfort and proficiency in using AI tools to complement daily functions.
- Ability to synthesize data and present it visually to stakeholders.
- Must be a United States citizen (naturalized or native) due to federal government security requirements for supporting U.S. Federal Government contracts.
- Ability to obtain and maintain a U.S. government issued security clearance.
Nice To Haves
- An active TS/SCI w/CI Poly is preferred.
- Experience building or maintaining GitLab CI, GitHub Actions, or Jenkins pipelines.
- Specific experience with Amazon Elastic Kubernetes Service (EKS).
- Experience securing large-scale, customer-facing SaaS products.
- May be required to be on site at client locations in the DC, MD, and VA (DMV) area.
Responsibilities
- Design and maintain the lifecycle of our core security stack (Vulnerability Management, SIEM, and SOAR) in a native AWS environment.
- Secure, manage, and monitor Kubernetes clusters and containerized workloads.
- Ensure our tooling scales alongside our containerized infrastructure.
- Use tools like Terraform, CloudFormation, or CDK to deploy and manage security infrastructure, ensuring our environments are version-controlled and immutable.
- Leverage Python to bridge the gaps between commercial tools.
- Actively use AI tools and LLMs as a "force multiplier" to accelerate development, optimize code, and automate repetitive tasks.
- Transform complex security telemetry into actionable, visual insights.
- Build dashboards that show our partners exactly where we stand and where the gaps remain.
- Work to integrate security tooling into the developer workflow, ensuring our engineering is as agile as the product it protects.
Benefits
- Workday Bonus Plan or a role-specific commission/bonus
- Annual refresh stock grants
- Comprehensive benefits
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
