Jack Henry & Associates, a leader in the fintech industry; is hiring a Senior Cloud Security Engineer with deep expertise in DevSecOps, multi-cloud security engineering, automation, and security controls development. This role is responsible for embedding security throughout the CI/CD lifecycle-ensuring Security as Code across AWS, Azure, and Google Cloud Platform (GCP).

The ideal candidate is highly technical, automation-driven, and passionate about building scalable, cloud-native guardrails that secure critical Cloud workloads. This engineer will design, implement, and validate cloud security controls, improve our CSPM capabilities, and automate remediation workflows across multi-cloud environments. This role also provides opportunities to mentor junior engineers and uplift engineering excellence across the team.

This position may be worked remotely within the United States, with the exception of California.

This position is not eligible for immigration sponsorship and support. Please do not apply if at any time you need immigration support now or in the future (i.e., H-1B, PERM). All positions, regardless of location, may require an onsite interview or in-person onboarding requirement to verify your identity.

What you'll be responsible for:
• Researches, recommends and implements changes to enhance network security as part of our cloud infrastructure transformation.
• Design security solutions that maintain security and compliance within public cloud while ensuring alignment of technology to business strategy.
• Develop and understand JHA's public cloud strategic roadmap and continuously identify gaps in cloud security program coverage.
• Work with the Digital Cloud DevOps team to integrate and operationalize security within their workflows.
• Participate and collaborate in project level architecture reviews and vendor selection recommendations.
• Assist in creating security architecture documentation based on specifications.
• Review security design to discover any errors or confirm the design meets required specifications.
• Build and maintain secure CI/CD workflows using GitHub Repositories, GitHub Actions, GitHub Docs, and GitOps operating patterns.
• Champion and implement Security as Code principles from design through deployment.
• Engineer and operate Cloud Security Posture Management (CSPM) solutions across AWS, Azure, and GCP.
• Build, test, validate, and promote cloud security controls into production workloads.
• Perform ongoing cloud control effectiveness evaluations and contribute to ICS security architecture.
• Use Terraform to build, deploy, and manage cloud security infrastructure and guardrail configurations.
• Develop automation using Python to support monitoring, remediation, CI/CD integrations, and guardrail enforcement.
• Performs other duties as assigned.

What you'll need to have:
• Minimum of 6 years of experience in software development, DevOps, or Infrastructure as Code
• Build ing and maintaining secure CI/CD workflows using GitHub Repositories, GitHub Actions, GitHub Docs, and/or GitOps operating patterns
• Cloud Security Posture Management (CSPM) Engineering
• Hands-on experience deploying and managing containerized applications
• Practical experience in declarative service infrastructure environments, specifically using Terraform
• Experience in an AWS, Azure, and/or GCP cloud environment

What would be nice for you to have
• Experience managing production environments in Google Cloud Platform (GCP)
• Support cloud security architecture decisions, threat modeling engagements, and change control processes.
• Implement serverless automated remediation using AWS Lambda, Azure Functions, and GCP Cloud Functions.
• Mentor and coach junior and mid-level engineers.
• Lead design discussions, perform peer reviews, and provide guidance on best practices.
• Maintain engineering documentation, runbooks, diagrams, and GitHub-based developer guidance.
• Production Programming Experience in Go or Python
• Familiarity with operating in a Unix/Linux shell.
• Industry Certification in Google PCSE, AWS Security, AZ-500, CKS, CCSP, CISSP, CCSK

If you got this far, we hope you're feeling excited about this opportunity. Even if you don't feel you meet every single requirement on this posting, we still encourage you to apply. We're looking for passionate, driven individuals who align with our mission and can bring unique perspectives to our team.