Job Description
We are seeking a Security Engineer to help secure and maintain cloud-native environments across AWS and Kubernetes platforms. This individual will play a critical role in ensuring cloud infrastructure complies with industry security standards, identifying and remediating risks, and partnering with engineering and operations teams to maintain a strong security posture.
The ideal candidate combines hands-on cloud security expertise with a deep understanding of compliance frameworks, automation, and container security. This role is well-suited for someone who enjoys solving complex security challenges, driving continuous improvement, and collaborating with cross-functional teams.
Key Responsibilities
Assess and maintain secure AWS cloud environments in accordance with industry best practices.
Validate compliance with security frameworks, including STIGs, CIS Benchmarks, and NIST 800-53 controls.
Perform ongoing security assessments and identify gaps, vulnerabilities, and configuration risks.
Create, track, and manage remediation activities through ticketing systems and security workflows.
Partner with engineering, DevOps, infrastructure, and compliance teams to implement security improvements.
Conduct regular reviews with stakeholders to discuss findings, priorities, and remediation plans.
Automate security processes and controls using cloud-native services and Infrastructure as Code.
Develop and maintain security documentation, standards, procedures, and technical configurations.
Monitor emerging threats, vulnerabilities, and evolving security best practices.
Ensure Kubernetes environments are securely configured, including cluster hardening, RBAC, network policies, secrets management, and container security controls.
Support continuous security monitoring and compliance initiatives across cloud and containerized workloads.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
5+ years of experience in cloud security, cybersecurity, or a related engineering role.
Strong hands-on experience securing AWS environments and cloud-native applications.
Expertise with AWS security services including:
IAM
KMS
CloudTrail
GuardDuty
Security Hub
AWS WAF
Knowledge of secure cloud architecture principles and best practices.
Experience with AWS networking concepts, including:
VPCs
Security Groups
Network ACLs
VPNs
Firewalls
Experience implementing and assessing compliance against STIGs, CIS Benchmarks, and NIST 800-53.
Proficiency with scripting and automation tools such as Python, Terraform, CloudFormation, or similar technologies.
Hands-on experience securing Kubernetes platforms, including:
EKS or other managed Kubernetes services
Cluster hardening
RBAC
Network policies
Container security
Secrets management
Strong troubleshooting, analytical, and problem-solving skills.
Excellent written and verbal communication skills with the ability to work across technical and non-technical teams.
Nice to Have Skills & Experience
AWS Certified Security – Specialty
CISSP (Certified Information Systems Security Professional)
CKS (Certified Kubernetes Security Specialist)
Experience with cloud security posture management (CSPM) tools such as Wiz, Tenable, Prisma Cloud, or similar platforms.
Experience working with SIEM technologies and creating detections, alerts, and security monitoring use cases.
Knowledge of CIS Kubernetes Benchmarks and Kubernetes security frameworks.
Experience securing containerized workloads in enterprise-scale environments.
Familiarity with DevSecOps practices and security automation pipelines.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.