Cloud Security EngineerDepartment: Information Technology
Employment Type: Full Time
Location: Redondo Beach
Compensation: $135,000 - $165,000 / year
DescriptionAs a
Cloud Security Engineer at Impulse, you will help secure infrastructure across a multi-cloud environment (Azure Government, AWS, and/or GCP) supporting sensitive aerospace and defense workloads.
This role is focused on hands-on implementation-hardening cloud environments, improving security posture, and integrating security into engineering workflows. You'll work closely with DevOps, IT, and IA teams to ensure systems maintain CMMC/NIST SP 800-171 requirements while remaining scalable and developer friendly.
Responsibilities- Secure and harden cloud resources across Azure, AWS, and/or GCP
- Conduct security assessments, threat modeling, and internal audits on cloud infrastructure
- Monitor and improve cloud security posture using tools like Defender for Cloud or CSPM platforms
- Implement and maintain IAM controls (RBAC, least privilege, conditional access)
- Integrate security checks into CI/CD pipelines (DevSecOps)
- Build and maintain secure infrastructure using Terraform
- Automate security operations using scripting and infrastructure as code
- Support CMMC / NIST 800-171 efforts, including control implementation and evidence collection
- Assist with logging, monitoring, and detection integration (SIEM/XDR)
- Collaborate with other teams to resolve security issues and improve overall security posture
Minimum Qualifications- 4+ years of experience in cloud, security, DevOps, or infrastructure roles
- Hands-on experience with at least one cloud provider (Azure preferred)
- Experience using Terraform or similar IaC tools
- Familiarity with securing CI/CD pipelines
- Solid understanding of IAM, secrets management, and security best practices
- Working knowledge of CMMC, NIST SP 800-171, or similar frameworks
Preferred Skills and Experience- 7+ years of experience in cloud, security, DevOps, or infrastructure roles
- Experience with Azure Government or AWS GovCloud
- Familiarity with Microsoft Defender for Cloud, Sentinel, or similar tools
- Exposure to container/Kubernetes security
- Scripting experience (Python, PowerShell, or Bash)
- Security certifications (e.g., Security+, AZ-500, CCSP)
- Experience in defense, aerospace, or regulated environments
- Comfortable working in fast-paced, cross-functional teams
Additional Information:Compensation bands are determined by role, level, location, and alignment with market data. Individual level and base pay is determined on a case-by-case basis and may vary based on job-related skills, education, experience, technical capabilities and internal equity. In addition to base salary, for full-time hires, you may also be eligible for long-term incentives, in the
form of stock options, and access to
medical, vision & dental coverage as well as
access to a 401(k) retirement plan.
Impulse Space's spacecraft manufacturing business is subject to U.S. export regulations including the International Traffic in Arms Regulations (ITAR) and Export Administration Regulations (EAR). This position requires applicants to be either U.S. Persons (i.e., U.S. citizen, U.S. national, lawful permanent U.S. resident (green card holder), an individual granted asylum in the U.S., or an individual admitted in U.S. refugee status) or persons eligible to obtain an export license from the U.S. Departments of State, Commerce, or other applicable U.S. government agencies. Learn more about the ITAR here.
