Job Information
Steampunk Senior Cloud Security Engineer in McLean, Virginia
Overview
Steampunk is looking for a Senior Cloud Security Engineer to join the Office of the CIO. In this position, you will join a high performing team in developing solutions and conducting security operations for Steampunk’s internal IT systems. In this role, you will be responsible for protecting Steampunk by developing, engineering, improving, and maintaining technical security controls for our cloud-based environments.
This will include managing cross-platform security visibility using tools such as Wiz Cloud, developing technical guardrails for our Azure and AWS cloud environments, and implementing other security controls as required to protect our systems, our people, and Steampunk.
We are looking for an individual with an appetite for taking on new challenges and solving complex problems with new innovative solutions. Be an agent of change on a team committed to achieving people-focused, mission-driven excellence.
Contributions
Directly implement and manage technical security of Steampunk’s internal cloud environments, primarily in AWS and Azure.
Continuously evaluate, develop, and improve Steampunk’s cloud security/governance and technical guardrails, leveraging CNAPP platforms such as Wiz to maintain continuous visibility across cloud workloads, identities, and data.
Serve as senior escalation point for complex cloud security challenges spanning data platforms, AI systems, governance, performance, and integration.
Monitor cloud security systems and networks for anomalies using tools such as Wiz, Microsoft Sentinel, and native cloud-provider security services; take appropriate actions to identify, respond to, and prevent security incidents.
Design and implement cloud security improvements—including CSPM policies, runtime threat detection rules, and vulnerability remediation workflows in Wiz—with emphasis on protecting Steampunk’s reputation and sensitive information.
Participate in our agile Scrum team as part of scrum events, and in creating and completing user stories focused on improving cybersecurity.
Present regular status updates and provide cross training to other team members.
Qualifications
Qualifications
7+ years in security engineering and/or cloud engineering, with significant hands-on cloud security ownership.
Ability to quickly learn new skills, tools, technologies, and scripting/programming languages as needed.
Strong understanding of Infrastructure-as-Code (IaC) and proven ability to build reusable templates/modules.
Ability to communicate complex topics clearly to executive-level leaders.
Demonstrated experience personally performing the following activities:
Developing and managing cloud resources in Amazon Web Services (AWS) and Azure.
Implementing, configuring, and managing cloud security guidance and guardrails at scale.
Designing, implementing, configuring, and managing cloud security platforms/tools such as Wiz, Defender for Cloud, AWS Security Hub, or equivalent—including improving detections, performing remediation, and tuning policies.
Investigating and remediating cloud security incidents and configuration issues in AWS and Azure, to include identity, network exposure, data protection, and workload protection.
Configuring and operationalizing CNAPP/CSPM tooling (e.g., Wiz) to enforce least-privilege, detect misconfigurations, and drive remediation workflows across cloud environments.
Note: Overseeing teams that performed this work does not meet these requirements. Your ability to personally perform these tasks will be the primary consideration for this role.
Preferred Qualifications
Bachelor’s degree in a technical field (e.g., Computer Science, Information Technology, Cybersecurity, or related field).
At least one Associate-level or Expert-level technical certification for Microsoft Azure.
At least one technical certification for Amazon Web Services (Solutions Architect Professional preferred).
Experience supporting cloud security for DevSecOps.
Hands-on experience administering and operating Wiz Cloud, including connector deployment, policy configuration, CSPM remediation workflows, and integration with SIEM/ticketing platforms.
Proficiency in Wiz query language (WQL) to build custom threat detection rules, executive dashboards, and compliance reports.
Experience integrating Wiz with CI/CD pipelines for shift-left security scanning of IaC and container images.
Experience with Microsoft Sentinel or other SIEM platforms, including writing KQL detection rules and building automated playbooks.
Familiarity with cloud-native security services: AWS GuardDuty, AWS Security Hub, Amazon Inspector, Microsoft Defender for Cloud, and Azure Policy.
Experience with endpoint and workload protection tools (e.g., CrowdStrike Falcon, Microsoft Defender for Endpoint).
Proficiency in scripting/automation languages (Python, PowerShell, Bash) for security tooling and workflow automation.
About steampunk
Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $160,000 to $180,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk’s total compensation package for employees. Learn more about additional Steampunk benefits here.
Identity Statement
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Steampunk is a Change Agent in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our Human-Centered delivery methodology , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an employee owned company , we focus on investing in our employees to enable them to do the greatest work of their careers – and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit http://www.steampunk.com .
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program.
Refer a Friend (https://careers-steampunk.icims.com/jobs/7496/senior-cloud-security-engineer/job?mode=apply&apply=yes&in_iframe=1&hashed=-336029103)
Need help finding the right job?
We can recommend jobs specifically for you!
Job Location US-VA-McLean
Posted Date 8 hours ago (3/13/2026 5:47 PM)
Job ID 7496
Clearance Requirement None