Senior Cloud Security Engineer
TrueanomalyincRole Overview
Trueanomalyinc is hiring a Senior Cloud Security Engineer. This is a full-time role in Denver, CO or Long Beach, CA or SF Bay Area. Part of Trueanomalyinc's Mobile hiring, posted 2 weeks ago. Full responsibilities, required qualifications, and the apply link are listed in the description below.
Resume Keywords to Include
Make sure these keywords appear in your resume to improve ATS scoring
Job description
Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it.
OUR MISSION
True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.
OUR VALUES
- Be the offset. We create asymmetric advantages with creativity and ingenuity.
- What would it take? We challenge assumptions to deliver ambitious results.
- It’s the people. Our team is our competitive advantage and we are better together.
YOUR MISSION
Cloud security at True Anomaly isn't about checking compliance boxes—it's about protecting infrastructure that enables space domain awareness and satellite operations. As our Senior Cloud Security Engineer, you'll build security tooling and implement security controls that enable our engineering teams to ship safely on cloud platforms. You'll implement security controls for our multi-cloud environments, working closely with staff engineers on architecture decisions while securing production workloads across Azure and AWS. Strong Azure security expertise is highly valued; deep AWS knowledge will be increasingly critical as our cloud footprint evolves. Working as part of the Platform Security team, you'll have impact within the security team and partner engineering teams.
This is a hands-on role where you'll write production code daily, owning security projects within the cloud domain. You'll implement cloud security solutions and build tooling to enforce security controls. You'll solve complex security problems, taking ownership of projects from design through implementation with guidance on architecture and strategic direction. You'll be working in an AI-native environment where leveraging AI to accelerate your impact is expected.
This position requires the ability to obtain and maintain a security clearance.
RESPONSIBILITIES
- Build security tooling, automation, and services for cloud security—implementing secure patterns that engineering teams can adopt
- Implement security best practices and provide technical input on cloud security, IAM architecture, network security, and infrastructure-as-code
- Implement and maintain security controls that strengthen the security posture of our cloud environments across Azure and AWS
- Implement secure-by-default cloud infrastructure including IAM, network architecture (VPCs, subnets, NACLs, Security Groups, Transit Gateways), data protection, encryption, and security monitoring
- Operate and maintain PKI infrastructure for cloud environments—including private CA hierarchies (AWS Private CA, AD CS), certificate lifecycle management, mTLS for service-to-service authentication, and load balancer certificate management
- Operate and maintain HashiCorp Vault as the central secrets management platform—including Vault PKI engine, dynamic secrets, authentication methods, and policy management. You'll build and maintain this infrastructure, not just configure managed services
- Partner with Kubernetes Security Engineer to implement unified PKI infrastructure across cloud and container environments, providing input on design decisions. Collaborate on K8s IAM integration, network policies, node security, and CSI driver security
- Design and troubleshoot multi-account and multi-VPC network topologies—diagnosing connectivity issues and security group misconfigurations across cloud environments
- Build automation and tooling to enforce security policies, detect misconfigurations, and respond to threats in cloud environments
- Execute cloud security posture management (CSPM), threat detection, and incident response projects
- Implement security improvements to infrastructure-as-code, CI/CD pipelines, and deployment processes
- Partner with engineering teams to implement secure cloud architectures for new capabilities and workloads
- Build security testing tools, CLI utilities, and dashboards to continuously validate security controls
- Solve complex security challenges in multi-cloud environments
- Leverage AI tools to accelerate development and automate security workflows
QUALIFICATIONS
- Active security clearance or ability to obtain and maintain security clearance
- Experience securing production cloud environments at scale, with strong understanding of cloud security models, attack patterns, and defensive strategies across Azure and AWS
- Strong software development skills in Python (preferred) and/or Go with experience building security tooling and automation
- Strong software engineering fundamentals: comfortable with data structures, algorithms, API design, debugging production systems, and working across multiple languages
- Strong Terraform skills including module design and infrastructure-as-code security best practices
- Experience building security tooling or automation used by engineering teams
- Strong experience with cloud networking and troubleshooting across AWS and Azure: VPCs/VNets, subnets, NACLs/NSGs, Security Groups, Transit Gateways/Virtual WAN, VPC peering, route tables, and VPN/ExpressConnect—you can debug "why can't X talk to Y" across multi-account/multi-subscription network topologies
- Hands-on experience with cloud security tools (CSPM, CWPP, SIEM) and infrastructure-as-code security (Terraform, CloudFormation)
- Strong knowledge of IAM, encryption, logging/monitoring, and cloud-native security patterns
- DevSecOps mindset with experience embedding security into development and operations workflows
- Proven ability to assess risk, prioritize work, and execute complex security projects
- Track record of solving complex technical problems
- Comfortable diving into unfamiliar codebases and leveraging AI to bridge knowledge gaps
- Strong communication skills and ability to collaborate effectively across teams
PREFERRED QUALIFICATIONS
- Strong PKI knowledge with hands-on experience working with certificate infrastructure—including certificate lifecycle management, mTLS implementation, certificate-based authentication, and X.509/TLS troubleshooting
- Hands-on experience operating HashiCorp Vault in production—including Vault PKI, dynamic secrets engines, and authentication methods. Experience integrating Vault with Kubernetes, AWS, and Azure auth methods is a plus
WORK ENVIRONMENT
- Fast-paced, mission-critical environment supporting national security space operations
- Requires coordination across distributed teams including spacecraft engineers, ground operations, software developers, and government partners
- May require participation in on-call rotation for security incident response and mission-critical system support
- Occasional travel to government sites, launch facilities, or partner locations may be required
COMPENSATION
- Colorado Base Salary: Senior: $145,000–$195,000, Staff: $160,000 to $235,000
- California Base Salary: Senior: $150,000–$205,000, Staff: $170,000 to $245,000 for Long Beach. Senior, $165,000 - $225,000, Staff: $185,000 to $265,000 for SF Bay Area
- Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave
Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience.
ADDITIONAL REQUIREMENTS
- Work Location—this role will be onsite at our Denver, SF Bay Area, or Long Beach offices. #LI-Onsite
This position will be open until it is successfully filled.
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us know.
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.
About Trueanomalyinc
Trueanomalyinc
178 other open roles at Trueanomalyinc on TryApplyNow.
Frequently Asked Questions
How do I apply for the Senior Cloud Security Engineer position at Trueanomalyinc?
Use the Apply button above to submit your application directly to Trueanomalyinc. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.
Where is the Senior Cloud Security Engineer position at Trueanomalyinc located?
This position is based in Denver, CO or Long Beach, CA or SF Bay Area. Trueanomalyinc has not indicated remote or hybrid options for this role, so candidates should plan for on-site work.
What does a Senior Cloud Security Engineer at Trueanomalyinc earn?
Trueanomalyinc has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.
When was the Senior Cloud Security Engineer role at Trueanomalyinc posted?
This role was posted on June 25, 2026 (15 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.
How much experience does the Senior Cloud Security Engineer role at Trueanomalyinc require?
This is a senior-level position. Most senior roles call for 5+ years of directly relevant experience. Trueanomalyinc lists their specific requirements in the description below, so review the must-have qualifications closely before applying.
Similar Jobs
More Jobs at Trueanomalyinc
View all →VP, Platform Engineering
Trueanomalyinc
Vice President, Production
Trueanomalyinc
Thermal Engineer (Senior or Staff)
Trueanomalyinc
Thermal Engineer (II or III)
Trueanomalyinc
Test Engineer (I or II)
Trueanomalyinc
AI-powered job search
Get every job scored to your resume
Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.
Get started freeNo credit card to start