Staff Cloud Security Engineer
$180k - $200kXometry
Xometry (NASDAQ: XMTR) powers the industries of today and tomorrow by connecting the people with big ideas to the manufacturers who can bring them to life. Xometry's digital marketplace gives manufacturers the critical resources they need to grow their business while also making it easy for buyers at Fortune 1000 companies to tap into global manufacturing capacity.
Xometry is looking for a Staff Cloud Security Engineer to own our cloud security posture and runtime detection capabilities. This is a high-impact, individual contributor role focused on ensuring our live cloud environments and containerized workloads are hardened, continuously monitored, and generating the right signals for our security operations function. This role is about detection architecture, posture management, and runtime visibility. You will be the primary owner of our CrowdStrike platform, working closely with our MDR providers to ensure alert fidelity, tuning, and appropriate escalation. You will also evaluate and potentially implement a cloud SIEM. This isn't a role where you watch dashboards and write tickets. You'll be the person who defines how we detect threats, decides how we respond to them, and has the autonomy to fix what you find. If you're tired of maintaining legacy tooling, navigating slow change management processes, or writing findings that disappear into a backlog, this is the opposite of that. We're a SaaS-first company running a modern, cloud-native stack. We ship fixes, not tickets.What You'll Contribute
- Own CrowdStrike Falcon configuration, ensuring policies are appropriately scoped, tuned, and generating actionable alerts.
- Partner with MDR to define alert routing, triage thresholds, and escalation logic, ensuring the right signals reach the right team.
- Monitor cloud environments (primarily AWS) for security posture drift: misconfigured IAM roles, overly permissive security groups, exposed storage, and non-compliant resource configurations.
- Secure Kubernetes clusters and containerized workloads: manage Network Policies, RBAC, Admission Controllers, and runtime detection for anomalous container behavior.
- Develop and enforce cloud security policies and standards for AWS infrastructure, ensuring secure and scalable deployments align with organizational risk posture.
- Evaluate and lead the implementation of additional detection tooling, including cloud SIEM platforms, designing detection rules and alerting pipelines.
- Manage infrastructure as code (IaC) security using Terraform or OpenTofu - ensuring IaC definitions meet security standards before deployment.
- Automate security posture checks and detection workflows using Python and shell scripting.
- Stay current with the evolving cloud threat landscape and translate emerging threats into detection coverage or posture improvements.
- Minimum 8 years of experience in cloud security, security engineering, or a related infrastructure security discipline.
- Hands-on experience with a cloud security posture management (CSPM) platform - CrowdStrike, Wiz, Prisma Cloud, Orca, or equivalent. Prior CrowdStrike experience is a plus but not required.
- Deep familiarity with AWS security architecture: IAM/SCP policy design, VPC networking, security groups, CloudTrail, and cloud-native security controls. GCP or Azure experience considered in lieu of AWS for strong candidates willing to expand into AWS.
- Proficiency with infrastructure as code (IaC) tools such as Terraform, OpenTofu, or CloudFormation, with an understanding of how to enforce security standards within IaC workflows.
- Strong Python and shell scripting skills for security automation, detection rule development, and tooling integration.
- Must be a US Citizen or legal permanent resident (Xometry handles ITAR-controlled data).
- AWS GovCloud experience.
- Hands-on Kubernetes security experience: securing and managing production clusters, including Network Policies, RBAC, and Admission Controllers.
- Experience with cloud-native SIEM solutions, including writing detection rules in Python or SQL.
- Experience securing microservices architectures, including service mesh security (Istio or Linkerd).
- Bachelor's degree in Computer Science, Information Security, or a related field
The estimated base salary range for new hires into this role is $180,000- $200,000 annually + bonus depending on factors such as job-related skills, relevant experience, and location. We also offer a competitive benefits package, including 401(k) match, medical, dental and vision insurance; life and disability insurance; generous paid time off including vacation, sick leave, floating and fixed holidays, maternity and bonding leave; EAP, other wellbeing resources; and much more. #LI-Hybrid Xometry is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status. For US based roles: Xometry participates in E-Verify and after a job offer is accepted, will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.
Vacancy posted 13 hours ago
Similar jobs that could be interesting for youBased on the Staff Cloud Security Engineer in Silver Spring, MD vacancy
$160k - $180k
...Join to apply for the Cloud Security Engineer role at Improvix Technologies Improvix Technologies pay range This range is provided by Improvix Technologies. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range...SuggestedFull time$166k - $220k
...Senior Cloud Security Engineer Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century's most innovative...SuggestedFull timeWork experience placementImmediate start- ...contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Cloud Security Engineer to support an enterprise-level program within a federal environment. Job Description and Responsibilities The successful...SuggestedFor contractorsWork at officeLocal areaRemote work
- ...Security Engineer Analyze technical risks of existing network / system and application architectures (IAAS/PAAS/SAAS and on premise) against... ...'s security posture. In depth knowledge with public cloud architecture, such as GCP, AWS and Azure, and virtualization...Suggested
$150k - $158k
...improved health and national security readiness solutions for federal... ...and development, systems engineering and integration, and digital... ...intelligence, data analytics, cloud enablement, modeling, and simulation... ...change requests from lab staff Test data transfer rates and...SuggestedTemporary workFlexible hours$115.78k - $215.02k
...Your New Role We are seeking a Cloud Security Engineer with expertise in cloud security architecture, configuration, and governance across AWS,... ...driving initiatives forward without having direct control of staff. Benefits and Compensation Pay Range: $115,780.00 – $215,020...Temporary workWork at office3 days per week$150k - $173k
...Staff Cloud Security Engineer Washington, DC The Nuclear Company is the fastest growing startup in the nuclear and energy space creating a never before seen fleet-scale approach to building nuclear reactors. Through its design-once, build-many approach and coalition...Bi-weekly pay- Description RDTS is seeking a skilled AWS Security Engineer to design, implement, and maintain secure cloud architectures within AWS. This role is responsible for strengthening cloud security posture, implementing preventative and detective controls, and ensuring compliance...Full timeWork at officeMonday to Friday
- An established industry player is seeking a Network/Cloud Security Engineer to enhance their IT infrastructure's security. This hybrid role involves maintaining and monitoring security operations, implementing standards, and conducting vulnerability assessments. Ideal candidates...
- Scale AI, Inc. is seeking an Infrastructure Security Engineer to secure large cloud environments, orchestrate compute clusters, and review infrastructure as code. You will implement robust security configurations across multi-cloud platforms and drive automation while mentoring...Full time
- A leading technology firm is seeking a Cloud Security Engineer to design and secure cloud environments for a federal program. The role involves hands-on cloud security implementation with a focus on DevSecOps and maintaining compliance standards. The ideal candidate will...
- A leading cloud security firm in Washington is seeking a skilled AWS Security Engineer to design and implement secure AWS architectures. The role involves managing IAM policies, ensuring cloud security compliance, and collaborating with DevOps on security automation. Candidates...Full time
$150k - $200k
Truebill is seeking a Cloud Security Engineer in Washington, D.C. to manage and enhance AWS security strategies while collaborating with the InfoSec team. You will be responsible for evolving our cloud infrastructure, ensuring secure deployments, and treating detection...Work at office- Bow Wave LLC is looking for a Cloud Developer Sr in Washington, D.C. This role serves as a technical architect for an AWS cloud hosting... ...and developing automated pipelines that incorporate security-by-design principles. Responsibilities include implementing cloud...
- Network/Cloud Security Engineer (Min 6yrs Exp) (HYBRID_Local to DC/MD/VA Area) Direct Client Req: Network/Cloud Security Engineer (Min 6yrs Exp) (HYBRID_Local to DC/MD/VA Area) Location: Washington, DC Position Description: Number of positions: 1 Length: 9-21 Months + Immediate...Local areaImmediate start
- The Nuclear Company in Washington is hiring a Cloud Security Engineer to enhance the security of its AWS cloud infrastructure. This hands-on role involves designing secure multi-account AWS environments, establishing cloud-security standards, and collaborating with engineering...
- Base-2 Solutions seeks a Junior Cloud Security Engineer to support the DOMEX Technology Platform on-site in Bethesda, MD. The role emphasizes securing cloud environments, CI/CD integration, and maintaining compliance across secure networks. Required TS/SCI with CI polygraph...
$152k - $222k
Google is seeking a Security Customer Engineer in Washington, D.C. to act as a trusted advisor for government and educational customers. You will facilitate the integration of Google Cloud's security solutions, ensuring customer success from initial engagement to deployment...$104k - $166k
Peraton is seeking an Information Systems Security Engineer (ISSE) to support operations onsite in Washington D.C. This role involves designing... ...candidates will possess a strong background in networking, cloud security, and scripting languages. The position offers a...$182k - $203k
Cacheflow is seeking a Senior Solutions Engineer, Public Sector in Washington, DC. You'll support our Federal Civilian and DoD customers... ...include conducting demonstrations, assisting customers with cloud security solutions, and thriving in a creative technical role. The...- Google is seeking a Security Customer Engineer to act as a trusted advisor for government and educational customers. This role requires significant experience in cloud security architectures and strong communication skills. The ideal candidate will work at the intersection...
- Job Details Standard Title: Junior Cloud Security Engineer Required Security Clearance: Top Secret/SCI Location: Bethesda, MD Work Type: On‑Site Shift: First Referral Eligibility: Eligible U.S. Citizenship Required? Yes Support the DOMEX Technology Platform as a...Hourly payContract workTemporary workImmediate startFlexible hoursShift work
- ...seeking an ambitious Forward Deployed Implementation Engineer to join our mission-driven team. You will own... ...customers’ apps into GameWarden, configure cloud deployments, and work with on-prem hardware to ensure secure OS and Kubernetes environments. A TS/SCI eligible...
- A cybersecurity solutions company in Washington, D.C., seeks an experienced security engineer to design and implement Splunk Enterprise Security. The ideal candidate has over 7 years of experience, including significant involvement with Splunk and Cribl. Responsibilities...
$174k - $239k
Okta is seeking a Staff Software Engineer in Washington to design security guardrails for a multi-cloud environment. Responsibilities include developing cloud security strategies, IAM practices, and infrastructure security standards. The ideal candidate will have over 8...- Blue Energy in Chevy Chase, MD is seeking a Corporate Infrastructure & Security Engineer to enhance and support its internal technology and digital infrastructure. The role requires expertise in Microsoft 365, Azure, cyber security, and the ability to operate in a fast-...
- DLH Corporation in Bethesda, MD is seeking a Security Engineer to join our team, focusing on cloud architecture, data interoperability, and security engineering for the SCHARE platform and related data environments. This role involves secure cloud configuration, metadata...
- Cloudflare is seeking an experienced Security Platform Engineer to enhance our secure infrastructure. This role focuses on building resilient systems for secrets management and supporting other engineering teams effectively. The ideal candidate will have at least 8 years...
- A leading identity management company seeks a Staff Software Engineer in Washington, DC, to enhance its security solutions. The successful candidate will have over 8 years of experience in coding and automation, particularly in developing ETL/ELT pipelines for security...
$140k - $170k
A tech firm in Washington is seeking a Security & Compliance Engineer to enhance their security posture and compliance with regulatory standards. The ideal candidate will have over 4 years of experience in security engineering, including incident response, compliance frameworks...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Staff Cloud Security Engineer. Be the first to apply!
Related searches
- senior aws cloud engineer Silver Spring, MD
- senior cloud network engineer Silver Spring, MD
- aws cloud Silver Spring, MD
- senior cloud service delivery manager Silver Spring, MD
- cloud security Silver Spring, MD
- cloud Silver Spring, MD
- assistant chief engineer
- engineering administrative assistant
- staff chemical engineer
- staff process engineer

