Mid-Level Cloud Security Engineer - Secret Cleared, On-Site jobs in United States
cer-icon
Apply on Employer Site
company-logo

Stories of Tomorrow · 1 month ago

Mid-Level Cloud Security Engineer - Secret Cleared, On-Site

positionLeesburg, VA
timeContract
remoteOnsite
seniorityEntry, Mid Level
date2+ years exp

Stories of Tomorrow is a federal government contracting company seeking a highly skilled Mid-Level Cloud Security Engineer. This role involves managing cloud security posture, onboarding systems into the Wiz platform, and supporting security operations across multi-cloud environments.

Publishing
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Onboard new cloud resources and applications into the Wiz platform
Manage, configure, and optimize Wiz Cloud, Wiz Defend, and Wiz Code modules
Maintain connectors, API integrations, and service accounts for multi-cloud environments (AWS, Azure, GCP)
Interpret and triage Wiz findings, misconfigurations, toxic combinations, and vulnerability exposures
Develop and maintain security policies, rules, and automation playbooks within Wiz
Implement and maintain cloud security controls aligned with NIST 800-53, RMF, and DoD/DoS requirements
Support vulnerability management, continuous monitoring, and threat remediation activities
Conduct architecture reviews, risk assessments, and secure configuration evaluations
Collaborate with DevOps teams on secure SDLC, CI/CD hardening, and IaC (Terraform/CloudFormation) security
Configure and maintain Wiz integrations with tools such as ServiceNow, Splunk, MS Teams, Okta, GitLab, Qualys, Tenable and other integrations as required
Support SSO configuration with Okta as Identity Provider
Develop custom API-based workflows and webhook automations for real-time alerting and reporting
Produce clear written documentation, including SOPs, onboarding guides, and security reports
Communicate complex technical issues to non-technical stakeholders
Coordinate with ISSO/ISSM teams and support ATO/continuous monitoring documentation requirements

Qualification

Wiz Cloud Security PlatformCloud Security EngineeringNIST 800-53 complianceAWS/Azure/GCP securityAPI integrationsIaC (Terraform/CloudFormation)Scripting (Python/PowerShell)Security-related certificationsCommunication skills

Required

U.S. Citizen with active Secret (or higher) security clearance
2-3 years of experience in cloud security, security engineering, or DevSecOps
Experience with RMF, NIST 800-53, and federal security compliance frameworks
Strong knowledge of AWS/Azure/GCP cloud architectures and security controls
Experience with API integrations, service accounts, and cloud-native security tools
Proficiency in IaC, scripting (Python/PowerShell), and CI/CD pipelines
Excellent oral and written English communication skills

Preferred

Hands-on experience with the Wiz platform (Cloud, Defend, Code modules)
Wiz Certification (Wiz Certified Cloud Security Practitioner or equivalent)
Security-related certifications such as Sec+, CCSP, AWS/Azure Security, CISSP (nice to have)
Experience with SIEM/SOAR platforms (Splunk, Sentinel), vulnerability scanners (Qualys, Tenable)

Company

Stories of Tomorrow

twitter
company-logo
Stories of Tomorrow er et nystartet forlag som har som mål å fortelle morgendagens historier.
dateFounded in 2023
people-size2-10 employees
web-link
https://teamtomorrow.no/

Funding

Current Stage
Early Stage
Company data provided by crunchbase