Zimperium1d ago

New↻ Repost

Sr. Cloud Security Engineer - FedRamp (Dallas, TX)

United States·DallasRemoteFull timesenior

EngineeringSecurity Engineer

0 views0 saves0 applied

Apply Now

Quick Summary

Key Responsibilities

Multi-Cloud Security Architecture: Design, implement, and manage security best practices and controls for services hosted across AWS, Azure, GCP, and OCI environments.

Technical Tools

awsazuregcpkubernetesterraformvaultci-cdlinuxmachine-learningmentoringsecurity-best-practices

Zimperium® is an industry leader in enterprise mobile security, being the first and only company to provide a complete mobile threat defense system that offers real-time, on device world-class protection against both known and unknown next generation of advanced mobile cyberattacks and malware.

Our MTD and award-winning machine learning-based engine protects against device, network, phishing and application attacks for IOS, Android and Windows devices, using a non-intrusive approach to always protect privacy of users.

Position Summary:

We are seeking a highly experienced and self-directed Senior Cloud Security Engineer to join our team. This critical role is responsible for designing, implementing, and maintaining robust security controls across our multi-cloud environment. The ideal candidate will possess deep technical knowledge, a proactive, automation-first mindset, and the ability to operate independently, taking full ownership of security responsibilities in a fast-paced environment.

Location: Dallas, TX preferred

Key Responsibilities:

Multi-Cloud Security Architecture: Design, implement, and manage security best practices and controls for services hosted across AWS, Azure, GCP, and OCI environments.

Infrastructure as Code (IaC) & Automation: Act as the subject matter expert for security automation, leveraging CloudFormation and/or Terraform to deploy secure infrastructure consistently and at scale.

System Hardening: Implement and enforce rigorous security configuration benchmarks, specifically CIS Level 2 and DISA STIGs, across all compute environments, including various flavors of Linux and Kubernetes clusters.

Security Tooling & Operations: Configure, manage, and optimize cloud-native and third-party security tools such as Palo Alto Prisma Cloud, Orca, Google SecOps, and Palo Alto Next Generation Firewalls.

Application & Network Defense: Deploy and manage Web Application Firewalls (WAFs), including F5 and other cloud-native WAF solutions, to protect critical applications.

DevSecOps & Pipeline Security: Integrate security testing tools (SAST, DAST, SCA) into CI/CD pipelines to enable "shift-left" security practices.

Secrets and Key Management: Design and maintain solutions for the secure storage and rotation of credentials, API keys, and secrets using tools like HashiCorp Vault or equivalent cloud-native services.

Risk & Design Review: Conduct threat modeling and perform security reviews for new applications and services to proactively identify and mitigate risks in the design phase.

Incident Response & On-Call: Participate in a rotating on-call schedule to address security incidents and operational issues promptly.

Compliance & Reporting: Support internal and external audits by generating evidence, writing detailed reports, and delivering clear, concise technical presentations to leadership.

Leadership & Mentorship: Operate with minimal oversight, taking the initiative to identify and suggest security improvements and drive projects to completion.

Required Qualifications & Experience:

- 8+ years of progressive experience in IT, with at least 5 years dedicated to Cloud Security Engineering in a multi-cloud environment.

- Expert-level proficiency in Infrastructure as Code (IaC) for security automation using Terraform and/or CloudFormation.

- Deep practical experience securing at least three of the following major cloud providers: AWS, Azure, GCP, and OCI.

- Proven expertise in system hardening using industry standards like CIS Level 2 and DISA STIGs.

- Extensive experience with Linux administration and securing containerization technologies, specifically Kubernetes.

- Hands-on experience with advanced security platforms, including at least two of the following: Palo Alto Prisma Cloud, Orca, Google SecOps, and Palo Alto Next Generation Firewalls.

- Demonstrated experience with WAF solutions, such as F5 or equivalent cloud-native services.

- Strong working knowledge of DevSecOps principles, including integrating security tools into CI/CD pipelines.

- Proven experience with Secret Management solutions (e.g., HashiCorp Vault, AWS Secrets Manager).

- Excellent written and verbal communication skills, including the ability to write executive-level reports and deliver technical presentations.

- Proven ability to operate independently and take ownership of critical responsibilities.

Preferred Requirements:

- Experience working within highly regulated environments, such as FedRAMP, DoD, or similar government/financial sectors.

- Demonstrated experience with implementing and maintaining controls for security frameworks such as ISO 27001 and SOC 2.

- Experience conducting formal threat modeling and risk analysis.

- Experience gained from both a large enterprise environment (for process and scale) and a fast-paced startup/tech company (for agility and innovation).

- Relevant industry certifications (e.g., CISSP, CCSP, AWS/Azure/GCP Security Specializations).

Location & Eligibility

Where is the job

Dallas, United States

Remote within one country

Who can apply

Listing Details

Posted: May 4, 2026
First seen: May 4, 2026
Last seen: May 5, 2026

Posting Health

Days active: 1
Repost count: 1
Trust Level: 70%
Scored at: May 6, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust

Apply for this position

Zimperium

lever

Zimperium is a global leader in mobile security, providing AI-driven, real-time, on-device protection against known and unknown mobile threats for applications and devices.

Employees

350

Founded

2010

Domain

Jobs

External application · ~5 min on Zimperium's site

Please let Zimperium know you found this job on Jobera.