Full-Time

Cloud Security Automation Engineer

Updated on 3/13/2025

GuidePoint Security

GuidePoint Security

501-1,000 employees

Provides cybersecurity guidance and integration services

No salary listed

Mid, Senior

Remote in USA

Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)

Category
Cybersecurity
IT & Security
Required Skills
PowerShell
Bash
Kubernetes
Microsoft Azure
Python
AWS
Jenkins
Terraform
Google Cloud Platform
Requirements
  • Proven experience in consulting or a similar role, with a focus on securing cloud-native environments, particularly Kubernetes.
  • Proficiency in Policy as Code tools (e.g., Open Policy Agent, Kyverno, HashiCorp Sentinel) and experience guiding clients in their implementation.
  • Expertise in Infrastructure as Code (IaC) tools like Terraform, CDKTF, AWS CloudFormation, AWS CDK, Bicep, or Azure Resource Manager (ARM).
  • Strong knowledge of secrets management solutions (e.g., HashiCorp Vault, AWS Secrets Manager, Akeyless, Azure KeyVault) and the ability to guide clients through the implementation process.
  • Experience with CI/CD & GitOps platforms and integrating security into DevOps & GitOps processes (e.g., Jenkins, GitHub Actions, GitLab CI, ArgoCD, Harness, ADO).
  • Solid understanding of cloud platforms (AWS, Azure, GCP, or OCI) and their native security services.
  • Excellent client-facing communication and presentation skills, with the ability to work collaboratively in diverse environments.
  • Experience with scripting and automation (e.g., Python, Bash, PowerShell) to support client engagements.
Responsibilities
  • Collaborate with clients to understand their cloud security needs, assess current environments, and provide expert guidance on securing cloud-native and multi-cloud workloads.
  • Design, implement, and provide guidance on securing Kubernetes clusters for clients, including best practices in cluster hardening, network policies, RBAC, and runtime security.
  • Advise clients on developing and enforcing security policies using tools like OPA (Open Policy Agent), HashiCorp Sentinel, or other Policy as Code solutions to maintain compliance across their cloud environments.
  • Work with clients to secure their IaC deployments using tools such as Terraform, CloudFormation, or Bicep templates, ensuring security best practices are followed.
  • Assist clients in implementing and automating secrets management solutions using tools like HashiCorp Vault, AWS Secrets Manager, or Kubernetes Secrets.
  • Collaborate with clients' DevOps teams to integrate security controls into their CI/CD processes, leveraging tools like Jenkins, GitHub Actions, GitLab CI, and other automation platforms.
  • Guide clients in securing various cloud-native services, including serverless functions, containers, and managed cloud services using best-in-class security tools and practices.
  • Help clients implement monitoring and logging solutions for cloud security events and automate threat detection and response using SIEM tools and cloud-native services.
  • Educate clients' teams on cloud security best practices, secure automation techniques, and security-as-code methodologies.
  • Develop scripts, tools, and playbooks to assist clients in automating repetitive security tasks, ensuring consistent enforcement of security controls across cloud environments.
Desired Qualifications
  • Experience with container security tools (e.g., Aqua Security, CNAPPs (Prisma Cloud, Wiz, Crowdstrike), Falco).
  • Familiarity with cloud security frameworks (e.g., CIS, NIST, ISO) and the ability to guide clients in adopting them.
  • Knowledge of DevSecOps practices and experience in integrating security into the software development lifecycle.

GuidePoint Security specializes in providing expert guidance for navigating the cyber landscape, offering services that include insights into the evolving threat landscape and aligning product decisions with resource capacity. They also assist with product comparisons and integration to optimize cybersecurity resources, focusing on technologies such as threat intelligence, security assessments, and cybersecurity product integration.

Company Size

501-1,000

Company Stage

Growth Equity (Non-Venture Capital)

Total Funding

N/A

Headquarters

Reston, Virginia

Founded

2011

Simplify Jobs

Simplify's Take

What believers are saying

  • GuidePoint Security's partnership with Onspring streamlines governance, risk, and compliance processes.
  • The federal cybersecurity market expansion boosts GuidePoint Security's growth opportunities.
  • Recognition of women leaders at GuidePoint Security highlights diverse leadership driving innovation.

What critics are saying

  • Emerging cybersecurity firms offering similar services at lower costs threaten market share.
  • Rapid evolution of cyber threats may outpace GuidePoint Security's current capabilities.
  • Over-reliance on partnerships could expose GuidePoint Security to operational risks.

What makes GuidePoint Security unique

  • GuidePoint Security is a leader in innovative cybersecurity solutions and expertise.
  • The company is recognized as a Trusted Cloud Provider by the Cloud Security Alliance.
  • GuidePoint Security's Phishing as a Service enhances cybersecurity training and awareness.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health Insurance

Dental Insurance

Paid Holidays

Unlimited Paid Time Off

Remote Work Options

Phone/Internet Stipend

401(k) Retirement Plan

Pet Insurance

Company News

Fair Institute
Mar 4th, 2025
GuidePoint Security Joins the FAIR Institute as an Advisory Partner to Advance Cyber Risk Management Best Practices

As an Advisory Partner, GuidePoint Security will collaborate with the FAIR Institute to promote best practices in cyber risk management based on the industry-leading FAIR model for risk quantification, provide strategic insights through participation in industry research boards, and engage with members through training, sponsorships, and events.

Homeland Security Today
Feb 26th, 2025
Matt Keller Named Senior Vice President of Federal Services at GuidePoint Security

GuidePoint Security has promoted Matt Keller to Senior Vice President of Federal Services, a move he recently announced on his LinkedIn.

Onspring
Oct 24th, 2024
Onspring Now Offered Through GuidePoint Security

Overland Park, Kansas, October 24, 2024 - Onspring, a leading no-code SaaS GRC automation software, announced today a strategic reseller partnership with GuidePoint Security, a leading cybersecurity services and solutions provider that empowers organizations to make smarter decisions and minimize risk.

Astrix Security
Sep 9th, 2024
Astrix Partners with GuidePoint Security

Astrix partners with GuidePoint Security.

Security Boulevard
Aug 29th, 2024
Navigating Cloud Security: Q&A on the Importance of Collaboration and Innovation

As organizations seek trusted partners to navigate these challenges and ensure robust protection in the cloud environment, we're excited to share that GuidePoint Security has been recognized as a Trusted Cloud Provider by the Cloud Security Alliance (CSA).