Cloud Security Engineer (Senior)

Dark Wolf Solutions is seeking a Senior Cloud Security Engineer to support the Unified Platform Cyber Operations & Security Center (COSC) in San Antonio, TX. The Senior Cloud Security Engineer will be responsible for securing cloud-native environments, assessing and mitigating risks in multi-tenant cloud infrastructure, and supporting compliance initiatives across classified and unclassified cloud systems. The ideal candidate will have deep experience with cloud security architectures, DevSecOps integration, vulnerability management, and enforcement of Zero Trust principles within cloud-native and hybrid environments.

Key Responsibilities

• Lead efforts to secure cloud environments (AWS GovCloud, Azure Government, and/or classified cloud infrastructures).
• Design, implement, and optimize cloud security controls across IaaS, PaaS, and SaaS services.
• Assess and harden Kubernetes clusters, containerized workloads, and cloud-native services.
• Define and implement Identity and Access Management (IAM) policies aligned to Zero Trust Architecture (ZTA) principles.
• Conduct risk assessments, vulnerability scans, and security audits of cloud environments.
• Integrate cloud-native security tools, such as AWS Security Hub, GuardDuty, Macie, and Microsoft Defender for Cloud.
• Collaborate with DevSecOps teams to embed security into CI/CD pipelines and Infrastructure as Code (IaC) workflows.
• Develop and maintain cloud security monitoring, logging, and alerting configurations integrated with the COSC SIEM.
• Support incident response activities related to cloud security events and breaches.
• Ensure compliance with DoD cybersecurity policies (e.g., RMF, STIGs, NIST 800-53) and assist with ATO activities for cloud systems.
• Mentor junior engineers and security analysts on cloud security best practices.

Basic Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or related technical field, or equivalent industry experience.
• Minimum of 6–8 years of experience in cybersecurity operations, with at least 3 years focused specifically on cloud security engineering.
• Strong experience securing AWS, Azure, and/or GCP cloud environments in classified or compliance-regulated environments.
• Deep understanding of cloud networking, IAM, encryption, container security, and cloud-native monitoring practices.
• Familiarity with Kubernetes security, including Pod Security Policies, RBAC, network policies, and workload identity.
• Hands-on experience implementing compliance frameworks such as NIST 800-53, NIST 800-171, or FedRAMP.
• Experience integrating cloud security telemetry into SIEM solutions.
• US Citizenship required with an active Secret clearance and eligibility for Top Secret/SCI.

Desired Qualifications

• Cloud security certifications such as AWS Certified Security – Specialty, Azure Security Engineer Associate, or CCSK/CCSP.
• Experience with compliance automation tools and Continuous ATO (cATO) initiatives.
• Experience with security orchestration and automation (SOAR) platforms.
• Familiarity with cloud-native security tools such as Prisma Cloud, Wiz, or Orca Security.
• Experience in supporting cybersecurity operations within DoD or Intelligence Community environments.

The estimated salary range is $145,000.00 - $185,000.00, commensurate on experience, technical expertise, certifications, and clearance level.

Primary work location is San Antonio, TX. Hybrid model with a mix of remote and on-site support; on-site presence required for classified system activities.

We are proud to be an EEO/AA employer Minorities/Women/Veterans/Disabled and other protected categories.
 
 In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.