Posted June 17, 2026

Cloud Security Engineer

Metric5

Washington, District of Columbia, United States 20001 Full Time

Reference: 285316284

Metric5

Location: Hybrid - Washington, DC

Responsibilities:

As the Cloud Security Engineer, you will serve as a primary technical Subject Matter Expert (SME) within the Information Security (InfoSec) workstream for the Alcohol and Tobacco Tax and Trade Bureau (TTB). You will be responsible for designing, deploying, and maintaining advanced cloud security controls and automated vulnerability reporting pipelines across TTB's modern Azure Gov and containerized environments.

Day-to-day activities include:

Designing and implementing cloud security controls including Cloud-Native Application Protection Platforms (CNAPP), Cloud Security Posture Management (CSPM), Cloud Workload Protection Platforms (CWPP), and Data Security Posture Management (DSPM).
Designing and deploying automated, risk-based vulnerability reporting solutions covering key attack surfaces such as virtual machines (VMs), containers, serverless environments, and cloud control planes.
Providing security architecture and design services for new and existing infrastructure, applications, cloud services, and AI systems, ensuring adherence to Zero Trust principles. Implementing and overseeing cloud-native logging, alerting, encryption, key management, secret management, workload identity, and container registry/image hardening.
Providing guidance and enforcement oversight for Web Application Firewalls (WAF), Web Application and API Protection (WAAP), API gateways, service meshes, and microservices security controls. Defining, documenting, and auditing secure configuration baselines (aligning with DISA STIGs and CIS Benchmarks) and monitoring for configuration drift.

Required Qualifications & Experience:

Education: Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related technical discipline. Experience: 8+ years of hands-on experience in cybersecurity engineering, with a heavy focus on securing enterprise cloud environments (specifically Microsoft Azure Gov).

Deep technical proficiency with CNAPP, CSPM, Azure native security tools, WAF/WAAP configurations, Infrastructure-as-Code (IaC) security, and container/Kubernetes security.
Proven ability to engineer and automate vulnerability reporting pipelines, configure zero-trust network access controls, and harden cloud tenants against DISA STIGs and CIS Benchmarks.
Must be a U.S. Citizen or Lawful Permanent Resident Alien with at least three (3) years of U.S. residency.

Preferred Qualifications & Experience:

Active Treasury clearance.
Industry-recognized cloud security certifications (e.g., Azure Security Engineer Associate, Microsoft Cybersecurity Architect Expert, CCSP).
Advanced certifications such as CISSP or CISM.
Experience integrating security controls within DevSecOps CI/CD pipelines.

Salary: $140,000 - $175,000

About Metric5
Metric5 is a small business with big company benefits. We have a passionate team of smart, fun- caring professionals, and we are here for the long haul. Join our growing team in a business where your contributions make an enormous impact. Our organization offers a comprehensive employee benefits package, continuous professional development, with a best in class company culture that is enjoyable to work in and supports the growth of each of our professionals.
Our benefits include:
- Health & Dental Insurance with 100% of individual coverage paid for by the company
- Vision Insurance
- Life & Short Term Disability Insurance
- 401K with company match (employees are immediately vested)
- Paid Vacation
- 9 Paid Holidays per year (plus 2 paid floating holidays)
- Parental Leave
- Employee Bonuses
- Professional Development Reimbursement Program
- Tuition Assistance Program

Metric5 is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Metric5 is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age, or genetic information. Metric5’s commitment to diversity and inclusive selection practices includes ensuring qualified long-term unemployed job seekers receive equal consideration for employment.

Equal employment opportunity, including veterans and individuals with disabilities.

PI285316284

Apply to this Job

Sign up for Job Alerts

If you are a human, ignore this field

Accounting
Administrative / Clerical
Analyst
Automotive
Banking / Finance
Biotech
Brokerage
Business Development
Business Management
Construction
Consultant
Contracting
Customer Service
Design
Direct Placement Program
Distribution / Shipping
Engineering
Entry Level / New Grad
Facilities Management
Franchise / Self-employed
Game Design / Development
General Business
General Labor
Government
Healthcare
Human Resources
Installation / Maintenance / Repair
IT - Computer Science
IT - Computer / Software Engineering
IT - General
IT - Help Desk / Support
IT - Information Security
IT - Systems Management
Legal
Management - Executive / C-suite
Management - General
Management - Operations
Management - Programs
Management - Project
Manufacturing
Marketing
Media / Journalism / Newspaper
Natural Resources / Environmental
Nonprofit - Social Services
Other
Professional Services
Purchasing / Procurement
Quality Assurance / Quality Control
Real Estate
Recruiting / Talent Acquisition
Remote / Work From Home
Research
Restaurant / Food Service
Retail
Safety / Security / Law Enforcement
Sales
Science
Skilled Labor / Trades
Strategy / Planning
Supply Chain / Logistics
Telecommunications
Training / Instruction / Teaching
Transportation
Warehouse

Cloud Security Engineer

Sign up for Job Alerts

Share this Job