Senior Cloud Security Engineer
Indexed description
Shamrock’s mission since the start has been to create value and success for our customers, our partners and our people. Strong ethics, dedication to our customers and close attention to the marketplace are critical to the success and growth of the Shamrock brands. Shamrock is headquartered in Overland Park, Kansas, with multiple offices throughout the U.S. Overland Park is a great place to live, work and play, being conveniently located within driving distance of everything Kansas City has to offer. Housed within the heart of Overland Park, our offices include 4 gorgeous towers on the East and West sides of Metcalf Ave. With a heavy community presence and a winning culture, Shamrock is a great place to work in Overland Park!
Why You’ll Love Working Here
Our award-winning culture is a testament to our commitment to growth, recognition and empowerment. From day one, we prioritize employees first, encouraging them to think and act like owners and providing endless opportunities for growth and self-development, both personally and professionally. Shamrock has been recognized as one of America’s 2025 “Most Loved Workplaces” by Newsweek.
Benefits
At Shamrock, we hire bright, ambitious people and give them the tools they need for a successful, long-term career here. Shamrock also offers a premier set of benefits for employees and their families:
- Training and Development: Ongoing training and professional development opportunities
- Medical: Fully paid healthcare, dental and vision premiums for employees and eligible dependents, and gym benefits
- Financial: Generous company 401(k) contributions and employee stock ownership after one year
- Work-Life Balance: Competitive PTO and work from home opportunities after an introductory period
The ideal candidate is a hands-on security professional with strong experience in cloud platforms, risk-based vulnerability management, and automation, capable of translating security requirements into practical controls that reduce real-world risk.
What You’ll Do
- Own and continuously improve Cloud Security Posture (CSPM/CNAPP) capabilities.
- Identify, prioritize, and remediate cloud misconfigurations and exploitable risks.
- Analyze and reduce attack paths across cloud environments.
- Drive risk-based vulnerability management focused on real exposure.
- Operationalize and manage tools such as Wiz, Prisma Cloud, Defender for Cloud, Tenable Cloud Security, or equivalent
- Partner with Cloud Engineering and Security Architecture to embed security into cloud platform design and delivery.
- Translate architecture standards into practical, enforceable security controls and guardrails.
- Identify gaps between intended architecture and deployed configurations.
- Provide actionable feedback to improve cloud security standards and patterns.
- Integrate security into CI/CD pipelines and engineering workflows.
- Build and maintain automated detection and remediation pipelines.
- Enable developers to remediate security findings quickly and effectively.
- Leverage Infrastructure as Code (IaC) tooling to enforce policies.
- Develop detection use cases for cloud-based threats and misconfigurations.
- Partner with SOC and security teams to improve cloud threat visibility and response.
- Continuously assess cloud environments for emerging risks and attack techniques.
- Define and track cloud security posture metrics, including attack path reduction, misconfiguration trends, mean time to remediation (MTTR)
- Support risk assessments and align controls with security standards and frameworks.
- 6–8+ years in cybersecurity, with strong focus on cloud security engineering.
- Hands-on experience with AWS, Azure, or GCP.
- Experience with CSPM/CNAPP platforms.
- Strong understanding of: IAM and privilege escalation risks, cloud networking and segmentation, and data protection and encryption
- Experience with: infrastructure as Code (Terraform, CloudFormation, etc.), kubernetes/container security, and CI/CD pipeline security
- Strong scripting/automation skills (Python, Bash, or similar).
- Experience with cloud exposure management or attack path analysis.
- Familiarity with MITRE ATT&CK and cloud attack techniques.
- Certifications such as CCSP, CISSP, or cloud security specialties.
Having trouble submitting your application? Contact us at [email protected] for support.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search