Skip to main content
Back to jobs

Cloud Security Engineer

External
godirect logoGodirect · Windsor, One Orange Way, CT
Part-timeRemote1w ago
Application SecurityAWSAzureBashCI/CDCloud Security
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role

Responsibilities

  • SaaS & Cloud Security Posture Management
  • S upport SaaS Security Posture Management (SSPM) initiatives across enterprise SaaS platforms.
  • Configure, operate , and tune SSPM/CSPM tools to identify misconfigurations, excessive permissions, and risky integrations.
  • Support and mature CSPM capabilities across AWS and Azure , including continuous monitoring and risk prioritization.
  • Partner with application owners to drive remediation of SaaS and cloud security findings.
  • Cloud & Container Security
  • Secure cloud-native workloads across AWS and Azure using native and third-party security controls.
  • Support container and Kubernetes security , including image scanning, runtime protections, and policy enforcement.
  • Collaborate with DevSecOps teams to embed security controls into CI/CD pipelines.
  • Automation, IaC & PaC
  • Develop and maintain security automation using scripting languages (Python, PowerShell, Bash).
  • Implement and review Infrastructure-as-Code (Terraform, ARM, CloudFormation) with a security-first mindset.
  • Design and enforce Policy-as-Code (OPA, Sentinel, native cloud policies) to prevent insecure deployments.
  • Enable shift-left security by integrating controls early in the development lifecycle.
  • AI / ML Security (Plus)
  • Contribute to emerging AI Security Posture Management (AI-SPM) efforts.
  • Partner with platform and data teams to assess and secure MLOps pipelines , models, and supporting infrastructure.
  • Help define guardrails for AI usage, data access, and model governance.
  • Risk, Governance & Collaboration
  • Translate technical findings into actionable risk insights for remediation .
  • Support audits, risk assessments, and regulatory inquiries related to cloud and SaaS security.
  • Stay current on emerging threats, SaaS attack patterns, cloud security trends, and AI security risks.
  • Mentor junior team members and influence secure-by-design practices across the organization.
  • Required Qualifications
  • 5 + years of experience in information security , with strong focus on cloud and SaaS security .
  • Hands-on experience with Cloud Security Posture Management (CSPM) in AWS and/or Azure.
  • Experience with SaaS Security Posture Management (SSPM) tools such as:
  • CrowdStrike Falcon Shield
  • Palo Alto (SaaS / Prisma-related capabilities)
  • or similar platforms
  • Strong understanding of container security and Kubernetes environments.
  • Proficiency in scripting and automation (Python, PowerShell, Bash).
  • Practical experience with Infrastructure-as-Code ( IaC ) and Policy-as-Code ( PaC ) .
  • Solid understanding of IAM, identity federation, least-privilege access, and SaaS permissions models.
  • Ability to work

Benefits

Vision insuranceRemote work options

Additional Information

Together we fight for everyone's opportunity for a better financial future. We will do this together - with customers, partners and colleagues. We will fight for others, not against: We will stand up for and champion everyone's access to opportunities. The status quo is not good enough ... we believe every individual and every community deserves access to financial opportunities. We are determined to support both individuals and communities in reaching a better financial future. We know that reaching this future depends on our actions today. Like our Purpose Statement, Voya believes in being bold and committed to action. We are committed to a work environment where the differences that we are born with - and those we acquire throughout our lives - are understood, valued and intentionally pursued. We believe that our employees own our culture and have a responsibility to foster an environment where we all feel comfortable bringing our whole selves to work. Purposefully bringing our differences together to positively influence our culture, serve our clients and enrich our communities is essential to our vision. Are you ready to join a company with a strong purpose and a winning culture? Start your Voyage - Apply Now ***This role is remote with the expectation that candidates are based near one of the following Voya office locations: Windsor, CT; Boston, MA; or Atlanta, GA.*** Voya is seeking a Senior IT Security Specialist to strengthen our SaaS Security Posture Management (SSPM) , Cloud Security Posture Management (CSPM) , and container security capabilities across a rapidly evolving hybrid cloud and SaaS ecosystem. This role will partner closely with Cloud, DevSecOps , Application Security, and Platform Engineering teams to identify, assess, and remediate security risks across SaaS platforms, public cloud infrastructure, and containerized workloads. The ideal candidate brings strong hands-on experience with cloud-native security controls, automation, Infrastructure-as-Code (IaC), Policy-as-Code (PaC) , and modern security tooling. Experience with CrowdStrike Falcon Shield , Palo Alto Prisma, Cortex or similar platforms is highly desirable. Familiarity with AI Security Posture Management (AI-SPM) and MLOps security is a strong plus as Voya continues to expand its AI-enabled capabilities.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at godirect? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect