• Provide cybersecurity support for mission-critical tactical systems • Ensure compliance with DoD cybersecurity policies and Risk Management Framework (RMF) requirements • Support ATO activities and conduct vulnerability assessments • Implement security controls and STIGs • Assist with continuous monitoring efforts • Collaborate with engineers and government stakeholders to maintain secure, operationally ready systems in a high-visibility Army acquisition environment.

• Manage and monitor AWS cloud environments for security threats and vulnerabilities. • Deploy, configure, and optimize security tools and services between AWS and other Cloud ISPs and Caesars SOC systems and applications. • Automate cloud security processes using tools like AWS Lambda, Terraform, CloudFormation, and scripting languages (Python, Bash). • Perform in-depth analysis of security alerts, incidents, and breaches to identify root causes and mitigate threats. • Lead and coordinate incident response efforts, including containment, eradication, and recovery. • Develop and refine detection rules, playbooks, and response procedures for cloud-based and other threats. • Oversee day-to-day operations of cloud security functions within the Security Operations Center, ensuring timely detection and resolution of security events. • Mentor and guide SOC analysts, providing technical expertise and fostering professional development. • Collaborate with cross-functional teams to continuously improve SOC processes, tools, and workflows. • Identify opportunities to enhance security monitoring, automation, and response capabilities. • Develop and implement scripts and workflows to streamline SOC operations and reduce manual effort. • Prepare and deliver reports, dashboards, and presentations to leadership and other departments. • Build strong relationships with IT, DevOps, and business units to ensure alignment on security objectives.

• The Specialist Engineer will have eight or more years of experience designing and deploying enterprise-level Cybersecurity solutions. • This role is responsible for collaboratively designing and leading implementation for security controls across the Enterprise, in a Cloud First, Mobile First Strategy. • The ideal team member will be a well-rounded security professional with experience in areas such as endpoint protection, network security, data protection, vulnerability management, SIEM, or security operations. • This role is expected to understand the operation and configuration of Cybersecurity tools and technical solutions and how these tools may best be used to meet standards for all aspects of Cybersecurity including infrastructure, applications and data security. • Recommending the best balance of security, cost, scalability, automation, simplicity, and administrative effort to achieve those ends. • Further, this position also supports the enterprise through security research and development, product evaluations, consulting, project support, and other tasks as needed. • The Lead Engineer provides technical expertise to implement security related standards, procedures, and guidelines appropriate to securing the existing environment in partnership with other departments and Information Technology. • They will be dynamic self-starters with a thirst for new knowledge and the opportunity to apply it, readily able to adapt to change, able to communicate to diverse audiences, ready to gracefully lead, influence, and be influenced by their peers.

Cleo is seeking a Lead Cloud Security Engineer to design, implement, and continuously improve security controls across our cloud infrastructure and SaaS environments. This role is responsible for strengthening Cleo's AWS security posture, embedding secure-by-default cloud guardrails, and partnering closely with Platform and Engineering teams to reduce infrastructure risk without slowing innovation. The ideal candidate is hands-on, technically deep in AWS, and experienced in building scalable cloud security capabilities in a high-growth SaaS environment. What You Will Be Doing Cloud Security Architecture - Design and implement secure cloud architecture patterns - Establish guardrails for AWS accounts and services - Strengthen multi-account strategy and segmentation - Improve IAM design, permission boundaries, and least-privilege models - Review major infrastructure changes for security impact Cloud Detection and Visibility - Implement and tune cloud-native detection capabilities - Integrate AWS security services into centralized monitoring - Identify misconfigurations and excessive permissions - Improve signal-to-noise ratio in cloud alerts Infrastructure as Code Security - Embed security controls into Terraform or other IaC workflows - Enforce policy-as-code guardrails - Ensure IaC scanning is integrated into CI/CD pipelines - Reduce configuration drift across environments Vulnerability and Configuration Management - Oversee cloud misconfiguration detection and remediation - Track infrastructure vulnerability exposure - Reduce critical vulnerability exposure window - Partner with Platform teams to automate remediation Data Protection and Encryption - Ensure proper encryption standards across storage and databases - Manage KMS usage and key lifecycle best practices - Strengthen logging and monitoring coverage Incident Response Support - Lead cloud-focused investigations during security incidents - Improve forensic readiness in AWS - Harden logging and evidence retention practices Automation and Continuous Improvement - Automate guardrails and enforcement mechanisms - Improve developer experience with secure cloud defaults - Reduce manual cloud security reviews - Optimizing tooling cost and effectiveness Metrics and Reporting - Define KPIs for cloud security posture - Report on misconfiguration trends and exposure windows - Provide executive-level reporting on infrastructure risk - Support audit and compliance evidence collection Your Qualifications Required - 7+ years of experience in cloud security, cloud engineering, or infrastructure security - Deep expertise in AWS architecture and services - Strong understanding of IAM design and least-privilege principles - Experience with Infrastructure as Code and CI/CD integration - Experience implementing cloud-native detection and monitoring - Ability to translate infrastructure risk into business impact Preferred - Experience in mid-market or high-growth SaaS environments - Experience supporting SOC 2 or similar audits - Familiarity with policy-as-code frameworks - Experience building multi-account AWS environments - Relevant certifications such as AWS Security Specialty, CISSP, or equivalent A few things we have to offer: - $130,000 to $150,000 base salary + bonus opportunity - Great Healthcare + Dental + Vision - Flexible PTO - Culture of support, encouraging Life-Work balance - 401k match - FSA and HSA options - Employee Assistance Program - Paid Parental Leave - Representing a company with 4,000+ clients and a 99% retention rate - Accelerated title and salary growth potential - A fun and energetic work environment that makes you excited to go to work every day