Senior Cloud Security Engineer

Title: Senior Cloud Security EngineerLocation: Remote

Note: Temp to hire.

Pay Range: $70/hr. To $75/hr. On w2.

About the Opportunity

As a Senior Cloud Security Engineer, you will lead the design and delivery of cloud-focused security capabilities that directly reduce enterprise risk. You will be responsible for turning priorities across the security organization into resilient, automated solutions running in production. This is a hands-on engineering role where writing code, building infrastructure as code, and operationalizing security tooling are core expectations. You will collaborate closely with security and engineering partners across product suites, research and prototype solutions, and carry them through architecture, documentation, and full production implementation.

You will contribute to forward-thinking security design within AWS, helping contribute to patterns that make secure implementation the default for engineering teams. Success in this role means delivering secure, observable, and highly available systems that stand up to real-world operational pressure while enabling product teams and security partners to move faster with confidence.

In this role, you will:

Build and scale cloud security capabilities, 50%

Design and deliver cloud-native security solutions that enhance visibility, strengthen protection controls, and enable automated detection and remediation across AWS and SaaS environments

Develop code and infrastructure as code to operationalize security controls using modern tooling and automation frameworks

Design, deploy, and manage highly available, secure, and scalable cloud security services running in production

Integrate security capabilities into CI/CD pipelines and engineering workflows to make secure implementation the default

Translate security priorities into production systems, 30%

Partner across and beyond the Information Security organization to turn risk priorities and detection gaps into engineered solutions

Research, prototype, and validate new approaches, then carry them through architecture, documentation, and full production implementation

Provide risk assessments and data-driven recommendations that influence engineering and security decisions

Identify systemic security weaknesses and implement durable, automated fixes that reduce recurring risk

Improve and evolve security engineering patterns, 20%

Strengthen reusable cloud security patterns, reference architectures, and automation frameworks to increase consistency and speed

Operate and continuously improve security tooling and services, including tuning, upgrades, and integrations

Contribute to forward-looking design within AWS to enhance resilience, observability, and operational maturity

Evaluate and promote new security standards, tools, and automation approaches that increase scale and effectiveness

About you, you have:

3 to 5 years of hands-on experience in cyber defense, including threat hunting, detection engineering, or incident response within a cloud or enterprise environment.

Practical experience working in AWS environments, including investigating activity using telemetry such as CloudTrail, IAM logs, VPC Flow Logs, and CloudWatch.

Experience writing and tuning SIEM queries and detections, with a strong understanding of how to improve signal-to-noise and reduce false positives. Experience with Sumo Logic is a plus.

Experience executing structured threat hunts, including forming hypotheses, analyzing data, documenting findings, and recommending actionable improvements.

Experience supporting incident response activities, including log analysis, impact scoping, and clear documentation of findings and remediation steps.

Familiarity with attacker behaviors and frameworks such as MITRE Telecommunication&CK, and the ability to apply them in practical detection and investigation scenarios.

Working knowledge of scripting or automation using tools such as Python, PowerShell, or Bash to improve efficiency in investigations and reporting.

Strong written and verbal communication skills, including the ability to produce clear investigation summaries and collaborate effectively with technical teams.

A collaborative mindset, curiosity about emerging threats, and a desire to continuously improve detection quality and response effectiveness.

Ability to travel 1-3 times per year tooffices.

Authorization to work in the United States.

Nice to have:

Experience participating in purple team exercises or detection validation activities.

Relevant certifications such as Security+, GCIA, GCIH, or AWS Security Specialty.

Exposure to modern cloud-native architectures such as containers, serverless, or CI/CD pipelines.

Role: Senior Cloud Security EngineerTemp to HireTeam: Information Security

Location: remote (FTE comp is based on cost of living)

Type: Temp to hire no visa, no 1099

Profile: This is a senior level security engineer role and they expect to see candidates who have supported application firewalls and security automation for enterprise level companies developing software in AWS environments. This person will be the center point of security to support all app teams w/this subject matter support automations (Python, JavaScript, AWS CDK and Cloud Formation).

Rates/Target Salary: standard temp rate / - k/Ideal k

Process: quality submission notes relative to this role along confirming statements of TTH >.5 tech screen w/manager followed by 1.0 -1.5 hour tech panel (remote interview protocol) >Tuesday orientations 8: 45-9: 00am EST

TechnologyNO Awareness of technology (0)LITTLE Awareness - read/heard of technology (1)EXPOSURE to technology in environment (2)SOME development in technology (3)Very COMFORTABLE developing in technology (4)EXPERTISE in technology i.E. Could teach a class (5)Python

• • • 4AWS - CDK

• • • 4AWS - Cloud Formation

• • • 4JavaScript (ES6)

• • • 4AWS

• • • 2SEIM

• • • 3
• • • 4MITRE Telecommunication&CK

• • • 4WAF (Web Application Firewall)

• • • 4Tines

• • • 2

About the Team

TheCloud & Product Security Engineering team builds and operates cloud-native security solutions that protect our enterprise and mission-critical digital products. We focus primarily on AWS and are responsible for engineering automated, scalable controls that secure high-stakes assessment platforms used by millions of students each year. We partner closely across the Information Security organization to translate risk priorities, detection gaps, and product security requirements into engineered solutions that strengthen the enterprise.

Our team turns security requirements into working security solutions. We design and deploy capabilities that enhance security visibility, strengthen protection controls, and enable automated detection and remediation across our customer-facing cloud environments. These are real-world, production security systems operating at scale.

About the Opportunity

As a Senior Cloud Security Engineer, you will lead the design and delivery of cloud-focused security capabilities that directly reduce enterprise risk. You will be responsible for turning priorities across the security organization into resilient, automated solutions running in production. This is a hands-on engineering role where writing code, building infrastructure as code, and operationalizing security tooling are core expectations. You will collaborate closely with security and engineering partners across product suites, research and prototype solutions, and carry them through architecture, documentation, and full production implementation.

You will contribute to forward-thinking security design within AWS, helping contribute to patterns that make secure implementation the default for engineering teams. Success in this role means delivering secure, observable, and highly available systems that stand up to real-world operational pressure while enabling product teams and security partners to move faster with confidence.

In this role, you will:

Build and scale cloud security capabilities, 50%

Design and deliver cloud-native security solutions that enhance visibility, strengthen protection controls, and enable automated detection and remediation across AWS and SaaS environments

Develop code and infrastructure as code to operationalize security controls using modern tooling and automation frameworks

Design, deploy, and manage highly available, secure, and scalable cloud security services running in production

Integrate security capabilities into CI/CD pipelines and engineering workflows to make secure implementation the default

Translate security priorities into production systems, 30%

Partner across and beyond the Information Security organization to turn risk priorities and detection gaps into engineered solutions

Research, prototype, and validate new approaches, then carry them through architecture, documentation, and full production implementation

Provide risk assessments and data-driven recommendations that influence engineering and security decisions

Identify systemic security weaknesses and implement durable, automated fixes that reduce recurring risk

Improve and evolve security engineering patterns, 20%

Strengthen reusable cloud security patterns, reference architectures, and automation frameworks to increase consistency and speed

Operate and continuously improve security tooling and services, including tuning, upgrades, and integrations

Contribute to forward-looking design within AWS to enhance resilience, observability, and operational maturity

Evaluate and promote new security standards, tools, and automation approaches that increase scale and effectiveness

About you, you have:

3 to 5 years of hands-on experience in cyber defense, including threat hunting, detection engineering, or incident response within a cloud or enterprise environment.

Practical experience working in AWS environments, including investigating activity using telemetry such as CloudTrail, IAM logs, VPC Flow Logs, and CloudWatch.

Experience writing and tuning SIEM queries and detections, with a strong understanding of how to improve signal-to-noise and reduce false positives. Experience with Sumo Logic is a plus.

Experience executing structured threat hunts, including forming hypotheses, analyzing data, documenting findings, and recommending actionable improvements.

Experience supporting incident response activities, including log analysis, impact scoping, and clear documentation of findings and remediation steps.

Familiarity with attacker behaviors and frameworks such as MITRE Telecommunication&CK, and the ability to apply them in practical detection and investigation scenarios.

Working knowledge of scripting or automation using tools such as Python, PowerShell, or Bash to improve efficiency in investigations and reporting.

Strong written and verbal communication skills, including the ability to produce clear investigation summaries and collaborate effectively with technical teams.

A collaborative mindset, curiosity about emerging threats, and a desire to continuously improve detection quality and response effectiveness.

Ability to travel 1-3 times per year tooffices.

Authorization to work in the United States.

Nice to have:

Experience participating in purple team exercises or detection validation activities.

Relevant certifications such as Security+, GCIA, GCIH, or AWS Security Specialty.

Exposure to modern cloud-native architectures such as containers, serverless, or CI/CD pipelines.

['AWS - CDK', 'AWS - Cloud Formation', 'JavaScript (ES6)', 'MITRE Telecommunication&CK', 'Python', 'SEIM', 'Tines', 'WAF (Web Application Firewall)'] Shift: ['AWS - CDK', 'AWS - Cloud Formation', 'JavaScript (ES6)', 'MITRE Telecommunication&CK', 'Python', 'SEIM', 'Tines', 'WAF (Web Application Firewall)']