Job Description

At Semperis, our mission is to be a Force for Good. Starting with being a great place to work. We believe that when people feel valued, supported, and empowered, they do their best work. That’s why we focus on creating an employee experience rooted in purpose, growth, and balance. Semperis has been recognized as one of America’s Fastest-Growing Cybersecurity Companies by the Inc. 5000, a DUNS 100 Top Startup to Work For, and a multi-year Inc. Best Workplace awardee.

We’re looking for a Senior Cloud Security Engineer to join our team.

As part of our growing team, you'll play a key role in protecting enterprises from cyber threats, while working with some of the brightest minds in cybersecurity and Identity Access Management.

What You’ll Be Doing

As we continue to scale our cloud footprint and regulated offerings, we are expanding our Cloud Security team with a Senior Cloud Security Engineer who thrives at the intersection of cloud platforms, security engineering, networking, and automation.

This role is not a SOC or incident-response–first position. It is focused on preventative security, secure-by-default cloud architecture, and building scalable security foundations and guardrails across our environments.

Your Key Responsibilities

• Design, build, and maintain secure cloud foundations across Azure, AWS and GCP (with deep expertise in at least one).

• Own and evolve Cloud Security Posture Management (CSPM) capabilities, including policies, guardrails, and automated remediation.

• Engineer and maintain cloud network security controls, including network segmentation and isolation, cloud-native firewalls and security groups, Application Gateway / WAF configurations, and secure ingress and egress patterns.

• Define and enforce security best practices for Kubernetes environments (AKS/EKS), including RBAC, network policies, workload isolation, and cluster hardening.

• Partner with engineering teams to perform security architecture reviews and provide guidance for new services, platforms, and major changes, helping engineering teams design secure solutions that meet security best practices and compliance requirements.

• Engineer and maintain identity and access security controls for cloud and production environments, including least privilege, workload identity, service principals, and conditional access.

• Contribute to FedRAMP and regulated environment readiness, including control implementation, evidence automation, and cross-team coordination.

• Build and operate secure cloud automation using Infrastructure as Code (Terraform, Bicep), CI/CD integrations, and policy-as-code.

• Apply a security lens to FinOps, defining guardrails that balance cost optimization with security and compliance.

• Develop tooling, automation, and self-service workflows that reduce manual effort and improve consistency across security programs.

• Act as a senior technical partner to engineering, IT, and compliance teams, contributing to long-term cloud security strategy and standards.

• Mentor junior engineers and contribute to raising the overall security maturity of the organization.

What You Bring to The Table

• 6+ years of experience in cloud security, security engineering, or cloud platform engineering roles.

• Strong hands-on experience securing cloud-native environments (Azure preferred).

• Hands-on experience securing Kubernetes environments (AKS/EKS) is a strong plus.

• Proven experience with cloud network security, including firewalls, WAFs, network segmentation, and secure connectivity patterns.

• Strong understanding of cloud security architecture, including shared responsibility models, secure service design, and defense-in-depth.

• Experience with preventative security controls, including CSPM, policy enforcement, and secure cloud baselines.

• Solid experience with identity and access management in cloud environments (RBAC, workload identity, service principals).

• Experience contributing to or supporting compliance programs such as FedRAMP, SOC 2, ISO 27001, or NIST frameworks.

• Strong Infrastructure-as-Code skills (Terraform, Bicep, CloudFormation).

• Ability to script or automate using Python, PowerShell, or similar languages.

• Familiarity with CI/CD pipelines and DevSecOps practices.

• Ability to operate independently, own complex problem spaces, and deliver practical, scalable solutions.

• Strong communication skills and comfort providing architecture-level guidance to engineering teams.

Why Join Semperis?
You’ll be part of a global team on the front lines of cybersecurity innovation. At Semperis, we celebrate curiosity, integrity, and people who take initiative. If you’re someone who sees the glass as half full, embraces challenges as growth opportunities, and values a healthy balance between work and life—we’d love to meet you.

**Semperis maintains office locations in several cities across the globe. Candidates who reside within 45 miles of one of our offices—or where the job description specifies a required location—will follow our hybrid work model. This includes working onsite some days per week and remotely the remaining days.

Semperis is an equal opportunity employer and will not discriminate against an applicant or employee based on race, color, religion, creed, national origin or ancestry, ethnicity, sex (including gender, pregnancy, sexual orientation, and gender identity), age, physical or mental disability, veteran or military status, genetic information, citizenship, marital status, or any other legally recognized protected basis under federal, state, or local law. The information collected by the Semperis application is solely to determine suitability for employment, verify identity, and maintain employment statistics.

Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and/or other applicable state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on Semperis. Please inform Semperis representative Anna Taylor, Director of Global Recruiting, if you need assistance completing this application or to otherwise participate in the application process.