Security Engineer, Cloud Security

Saronic Technologies is a leader in revolutionizing autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations through autonomous and intelligent platforms.

Security at Saronic is a force multiplier. We're seeking a Security Engineer to own the design, implementation, and continuous improvement of security guardrails across our cloud infrastructure. You won't just secure the cloud; you'll build the systems and patterns that enable every team at Saronic to move fast and ship with confidence, with security baked in from the start. You will be the technical authority on how we architect, govern, and defend our AWS environments across commercial and Gov Cloud.

• Own the security architecture for Saronic's AWS environments, including multi-account strategy, network segmentation, identity architecture, and data protection across commercial AWS and AWS Gov Cloud
• Design and maintain secure-by-default Terraform modules and IaC standards that teams adopt as the standard path, enforcing least privilege, secure defaults, and compliance requirements
• Implement preventive controls (SCPs, permission boundaries, policy-as-code) and detective controls (Config rules, Cloud Trail analysis, Guard Duty) as a unified, layered security model
• Design and enforce IAM patterns across AWS accounts, services, and workloads including least-privilege policies, permission boundaries, cross-account access, federation, and service-to-service authentication
• Implement and govern secrets management using tools such as AWS Secrets Manager or Vault, integrated into CI/CD and runtime environments
• Partner with Dev Ops and Platform Engineering to embed security into CI/CD pipelines, infrastructure provisioning, and deployment workflows
• Build automated compliance validation into infrastructure pipelines and replace manual security gates with automated guardrails wherever possible
• Create self-service security tooling and patterns that allow teams to operate with speed and autonomy while maintaining compliance
• Integrate logging, monitoring, and alerting across cloud infrastructure to validate control effectiveness and detect misconfigurations or threats
• Build and tune cloud-native detections using Cloud Trail, Guard Duty, Config, and SIEM integrations
• Support incident response for cloud security events, drive root-cause analysis, and translate findings into improved guardrails and controls

• 6+ years of hands-on experience in cloud security engineering, infrastructure security, Dev Sec Ops , or a closely related security engineering role
• Expert-level proficiency with Terraform, including module design, state management, policy-as-code, and managing complex multi-environment configurations
• Deep expertise in AWS security services and architecture, including IAM, Organizations, SCPs, Control Tower, Cloud Trail, Config, Guard Duty, Security Hub, KMS, and VPC security
• Demonstrated experience building security guardrails and reusable infrastructure patterns that engineering teams adopt without friction
• Strong experience with CI/CD pipeline security, IaC review processes, and automated compliance validation
• Experience operating in AWS Gov Cloud or FedRAMP-regulated cloud environments
• Strong proficiency in Python, Go, Rust, or equivalent languages for building security automation and tooling
• Ability to obtain and maintain a security clearance

• Experience in defense, aerospace, robotics, autonomy, or other high-assurance environments
• Experience designing multi-account AWS landing zones and organizational security architectures from the ground up
• Hands-on experience with Kubernetes security, container security, and service mesh security in cloud-native environments
• Familiarity with NIST SP 800-171, NIST SP 800-53, FedRAMP, or Cloud Computing SRG Impact Levels
• Experience with infrastructure drift detection, automated remediation, and continuous compliance monitoring
• Relevant certifications such as AWS Security Specialty, AWS Solutions Architect Professional, Hashi Corp Terraform Associate/Engineer, CCSP, or CISSP

Benefits:

Medical Insurance: Comprehensive health…