Senior Application Security & Cloud Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Space Telescope Science Institute · 2 days ago

Senior Application Security & Cloud Engineer

positionBaltimore, MD
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$110K/yr - $140K/yr
date8+ years exp

The Space Telescope Science Institute (STScI) is a multi-mission science operations center for NASA’s flagship observatories. They are seeking a Senior Application Security & Cloud Engineer to build secure, scalable cloud environments and embed application security practices into cloud software delivery for significant space telescope missions.

AerospaceEducationNon Profit
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Design, implement, and maintain secure AWS cloud infrastructure using Infrastructure as Code
Build and optimize CI/CD pipelines to ensure secure, reliable application delivery
Own and enhance AWS cloud workload related CI/CD pipelines framework, ensuring SAST, DAST, SCA, and container scans are embedded into every deployment
Partner with development teams to shift security left, and address vulnerabilities early in the SDLC and promote secure coding practices
Automate security policies, compliance checks, and remediation workflows
Collaborate with cross-functional teams to champion DevSecOp culture across the organization
Support compliance initiatives (SOC2, ISO27001 etc.)

Qualification

AWS expertiseInfrastructure as CodeApplication securityCI/CD platformsScripting/automation skillsSecurity frameworksDevOps principlesZero Trust familiaritySecrets managementContainersOrchestrationSecurity testing toolsAWS certifications

Required

8+ years of experience in cloud engineering, DevOps, or security engineering
Strong AWS expertise (IAM, VPC, EC2, EKS/ECS, S3, RDS, Lambda)
Familiarity with Zero Trust, IAM best practices, secrets management, and KMS
Proven experience with Infrastructure as Code (Terraform, AWS CDK, CloudFormation)
Hands-on experience with CI/CD platforms (Jenkins, GitHub Actions, GitLab CI, or AWS CodePipeline)
Familiarity with containers and orchestration (Docker, Kubernetes, EKS)
Application security expertise, with practical knowledge of SAST, DAST, and SCA tools (Snyk, Checkmarx, Veracode, SonarQube)
Understanding of security frameworks and best practices (OWASP, NIST, CIS benchmarks)
Strong scripting/automation skills (Python, Bash, or similar)

Preferred

AWS Professional or Specialty certifications (e.g., AWS Certified Security, DevOps Engineer – Professional)
Experience with secrets management tools (HashiCorp Vault, AWS Secrets Manager)
Exposure to SOAR platforms or automated security response systems

Benefits

Employer retirement contribution – direct STScI contribution of 10% of your salary from your first day
12 days sick leave, up to 24 days’ vacation, and 10 paid holidays
Flexible work schedule with healthy work/life balance
Comprehensive medical/dental/vision/prescription plans, and more!

Company

Space Telescope Science Institute

twittertwittertwitter
company-logo
Space Telescope Science Institute is a company focused on technology and implementation of long range telescopes.
dateFounded in 1981
location
Baltimore, Maryland, USA
people-size501-1000 employees
web-link
http://www.stsci.edu/portal

Funding

Current Stage
Late Stage

Recent News

Nasa.gov
NASA Webb Finds Early-Universe Analog’s Unexpected Talent for Making Dust
2026-01-07
Nasa.gov
NASA Hubble Helps Detect ‘Wake’ of Betelgeuse’s Elusive Companion Star
2026-01-06
Nasa.gov
NASA’s Hubble Sees Asteroids Colliding at Nearby Star for First Time
2025-12-19
Company data provided by crunchbase