Cloud Security Engineer

Job Description
As a Cloud Security Automation Engineer, you will be responsible for designing, deploying, and maintaining secure cloud infrastructure on AWS while specializing in the creation of security automation solutions and integrations between security tools. Your role combines traditional cloud engineering responsibilities with advanced security automation development, ensuring that security processes are streamlined, scalable, and seamlessly integrated across the environment.

You will design and implement automated security workflows, create custom integrations between security tools, and develop solutions that enhance security posture while reducing manual overhead. In addition to your automation focus, you will perform standard cloud engineering duties including infrastructure provisioning, system administration, performance optimization, and troubleshooting across AWS services.

With 5 years of experience in cloud engineering and security automation, you will possess the technical expertise to build robust, automated security solutions while maintaining and optimizing cloud infrastructure at scale. Your role requires strong programming and automation skills, deep understanding of AWS services, and the ability to create seamless integrations between disparate security tools and platforms. You will collaborate with security, infrastructure, and development teams to ensure that automated security solutions meet business requirements while maintaining operational excellence.
ESSENTIAL FUNCTIONS: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.

• Security Automation Development:
  • Design and develop custom automation solutions for security processes using Python, Go, or PowerShell
  • Create automated workflows for vulnerability management, compliance checking, and incident response
  • Build serverless automation solutions using AWS Lambda, Step Functions, and EventBridge
  • Develop custom scripts and tools to automate repetitive security tasks and processes

• Security Tool Integration:
  • Design and implement integrations between security tools (SIEM, vulnerability scanners, endpoint protection, etc.)
  • Create API integrations and data pipelines between security platforms and AWS services
  • Develop custom connectors and webhooks for security tool orchestration
  • Implement single sign-on (SSO) and identity federation across security platforms

• Cloud Infrastructure Management:
  • Design, deploy, and maintain AWS cloud infrastructure using Infrastructure as Code (Terraform, CloudFormation)
  • Manage and optimize AWS services including EC2, VPC, RDS, S3, Lambda, and container services
  • Perform system administration tasks, performance tuning, and capacity planning
  • Troubleshoot infrastructure issues and provide technical support for cloud environments

• Security Monitoring & Response Automation:
  • Implement automated security monitoring using AWS CloudWatch, GuardDuty, and Security Hub
  • Develop automated incident response playbooks and orchestration workflows
  • Create custom alerting and notification systems for security events
  • Build automated remediation solutions for common security findings and vulnerabilities

• Cloud Security Architecture:
  • Design secure cloud architectures and implement security best practices across AWS services
  • Implement and maintain security controls including IAM policies, Security Groups, and encryption
  • Conduct security assessments and implement automated compliance checking
  • Develop and maintain security standards and documentation for cloud infrastructure

Supervisory Responsibilities: This position has no formal supervisory responsibilities.

MINIMUM REQUIRED QUALIFICATIONS:

• Five (5) years' experience in cloud engineering, infrastructure automation, or security engineering with at least 3+ years focused on AWS cloud environments and security automation
• Ability to work in a fast-paced environment with changing priorities
• On-call availability for critical security incidents and infrastructure issues
• Ability to travel 10% of the time
• Ability to clear required background check

OTHER REQUIRED QUALIFICATIONS

Cloud Engineering & Infrastructure:

• Strong experience with AWS services including EC2, VPC, RDS, S3, Lambda, ECS/EKS, CloudFormation, and Systems Manager
• Proficiency in Infrastructure as Code tools (Terraform, CloudFormation, AWS CDK)
• Experience with Linux and Windows system administration and troubleshooting
• Knowledge of networking concepts including VPCs, subnets, routing, load balancing, and DNS
• Experience with monitoring and logging solutions (CloudWatch, CloudTrail, AWS Config)

Security Automation & Programming:

• Advanced programming skills in Python, Go, PowerShell, or similar languages for automation development
• Experience building serverless automation solutions using AWS Lambda, Step Functions, and EventBridge
• Strong API development and integration skills (REST, GraphQL, webhooks)
• Experience with automation frameworks and orchestration tools
• Knowledge of version control systems (Git) and collaborative development practices

Security Tool Integration & Management:

• Experience integrating security tools through APIs, webhooks, and custom connectors
• Knowledge of SIEM platforms (Splunk, Elastic, AWS Security Hub) and their integration capabilities
• Experience with vulnerability management tools and automated scanning solutions
• Familiarity with endpoint protection platforms and their management interfaces
• Understanding of identity and access management systems and SSO integration

AWS Security Services:

• Deep understanding of AWS security services (IAM, GuardDuty, Security Hub, Config, CloudTrail, WAF, KMS)
• Experience with AWS security best practices and Well-Architected Framework security pillar
• Knowledge of AWS compliance and governance tools (Organizations, Control Tower, Config Rules)
• Experience with secrets management (AWS Secrets Manager, Parameter Store, HashiCorp Vault)

Security Knowledge & Frameworks:

• Understanding of security frameworks (NIST Cybersecurity Framework, CIS Controls, OWASP)
• Knowledge of regulatory requirements (SOC 2, PCI DSS, HIPAA, GDPR) and automated compliance
• Experience with vulnerability management and patch management processes
• Understanding of incident response procedures and automation opportunities
• Knowledge of threat modeling and risk assessment methodologies

Additional Technical Skills:

• Experience with container technologies (Docker, ECS, EKS) and their security implications
• Understanding of network security concepts (firewalls, VPNs, encryption, PKI)
• Familiarity with data classification and data loss prevention concepts
• Experience with backup and disaster recovery planning and automation

Leadership & Communication:

• Team collaboration experience and ability to work across multiple technical teams
• Strong analytical and problem-solving skills for complex automation challenges
• Excellent written and verbal communication skills for technical documentation and stakeholder interaction
• Ability to translate business requirements into technical automation solutions
• Experience mentoring others on security automation and best practices

Certificates and Licenses: One or more including:

AWS Certified Solutions Architect - Associate/Professional

AWS Certified Security - Specialty

AWS Certified DevOps Engineer - Professional

AWS Certified SysOps Administrator

CISSP, Security+, or similar security certification

DESIRED QUALIFICATIONS:

Bachelor's degree in computer science, information technology, cloud computing, or related field

WORK ENVIRONMENT: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• This position is virtual and open to residents of the 50 states, D.C.

Compensation & Benefits: Stride, Inc. considers a person's education, experience, and qualifications, as well as the position's work location, expected quality and quantity of work, required travel (if any), external market and internal value when determining a new employee's salary level. Salaries will differ based on these factors, the position's level and expected contribution, and the employee's benefits elections. Offers will typically be in the bottom half of the range.

• We anticipate the salary range to be $66,379.50- $150,000.00. The upper end of this range is not likely to be offered, as an individual's compensation can vary based on several factors. These factors include, but are not limited to, geographic location, experience, training, education, and local market conditions. Eligible employees may receive a bonus. Stride offers a robust benefits package for eligible employees that can include health benefits, retirement contributions, and paid time off.

The above job is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as assigned by their supervisor. All employment is "at-will" as governed by the law of the state where the employee works. It is further understood that the "at-will" nature of employment is one aspect of employment that cannot be changed except in writing and signed by an authorized officer.

Job Type
Regular

The above job is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as assigned by their supervisor. All employment is "at-will" as governed by the law of the state where the employee works. It is further understood that the "at-will" nature of employment is one aspect of employment that cannot be changed except in writing and signed by an authorized officer.

If you are a job seeker with a disability and require a reasonable accommodation to apply for one of our jobs, you can request the appropriate accommodation by contacting

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

Stride, Inc. is an equal opportunity employer. Applicants receive consideration for employment based on merit without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status, or any other basis prohibited by federal, state, or local law. Stride, Inc. complies with all legally required affirmative action obligations. Applicants will not be discriminated against because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.