Skip to main content
Careers
Sign In

Senior Cloud Security Engineer

Job Details

Experienced
Penn Center - Denver, CO
Full Time
$125000.00 - $150000.00 Salary
Negligible
Day
Government

SENIOR CLOUD SECURITY ENGINEER

Summary of Job Responsibilities
The Senior Clouds Security Engineer will play a critical role in safeguarding the organization’s systems, data, and infrastructure—across both on-prem and cloud environments. You will serve as a technical leader and trusted advisor, guiding the design, implementation, and maintenance of enterprise security solutions. In addition to responding to security incidents, performing assessments, and ensuring compliance, you will mentor junior staff, manage security projects, and lead cross-functional efforts to reduce risk. The ideal candidate brings broad technical knowledge across multiple security domains, deep expertise in key technologies (including cloud platforms such as AWS, Azure, and OpenShift), and a strategic mindset to proactively strengthen the organization’s security posture. This internal-facing role requires strong communication skills, hands-on technical ability, and a collaborative approach to problem-solving and leadership.


Ideal Candidate Statement
The ideal candidate is a seasoned security professional with a proven track record of managing complex systems and mitigating advanced threats. You are both hands-on and strategic, capable of resolving incidents independently while also designing forward-looking security programs. You bring a depth of technical knowledge and strong analytical skills, and you're comfortable working across teams to implement solutions that are secure, scalable, and support the organization’s mission. You take initiative, communicate effectively, and demonstrate a commitment to continual learning and leadership.

  • 7+ years in information security roles with increasing responsibility 
  • Experience designing and deploying security systems at scale 
  • Hands-on experience with cloud security architectures in Azure, AWS, and/or OpenShift 
  • Adept at troubleshooting complex technical issues and providing mentorship 
  • Excellent at translating technical detail into actionable recommendations 
  • Confident leading technical conversations, audits, and strategic planning 
  • Committed to security excellence and professional growth 
  • Holds or is actively pursuing industry certifications (e.g., CISSP, CEH, GIAC) and cloud security certifications (e.g., Azure, AWS, OpenShift) 
  • Experience leading technology platform implementations and guiding technical teams 
  • Expert knowledge of risk management strategies 
     

Essential Duties and Responsibilities
Employees are held accountable for all duties of the job. Individuals must be able to perform these duties with or without reasonable accommodations.

  • Serve as a subject matter expert for information security tools, technologies, and platforms; lead the design, implementation, and optimization of security systems across the enterprise. 
  • Drive new strategic initiatives in the security space including log alerting and monitoring refinement, SOAR implementation, AI/ML security reviews, new project implementations for honeypot technology, advise staff on best practices for detection and response. 
  • Develop and enforce cloud-specific security best practices, policies, and configurations for Azure, AWS, and OpenShift environments. 
  • Act as a senior escalation point for security incident response; perform forensic analysis, lead investigations, coordinate cross-team response, and provide executive-level summaries. 
  • Administer, tune, and maintain critical security infrastructure including SIEM, endpoint protection, firewalls, IDS/IPS, DLP, CASB, email/web security, identity governance, and vulnerability management platforms. 
  • Conduct in-depth risk assessments, vulnerability scans, and penetration tests; identify complex threats and lead remediation efforts with IT and business units. 
  • Collaborate with infrastructure, cloud operations, and DevOps teams to integrate security controls into cloud deployments, CI/CD pipelines, and Infrastructure-as-Code practices. 
  • Develop, document, and enforce security policies, standards, and procedures; contribute to business continuity, disaster recovery, and incident response plans. 
  • Lead and participate in internal and external audits, compliance assessments, and certification processes. Assist with interpreting and meeting regulatory and industry standards. 
  • Collaborate with application, infrastructure, and DevOps teams to integrate security controls and promote secure development and deployment practices. 
  • Proactively research and evaluate new security technologies, trends, and threats; recommend improvements to existing architecture and future strategic direction. 
  • Mentor junior engineers, provide training, share expertise, and contribute to a culture of continuous learning and improvement. 
  • Document systems, processes, and architecture to ensure transparency and supportability of solutions. 
  • Coordinate with vendors to manage product renewals, contracts, support, and roadmap discussions. 

Other Duties/Responsibilities

  • Performs other duties as assigned
  • On-Call Support 
  • Less than 10% travel 


Job Qualifications

  • Bachelor’s degree in a technical (STEM) field and a minimum of seven years of technical experience in information security, or an equivalent combination of education and experience. 
  • Expert-level understanding of core information security principles, including network security, identity and access management, encryption, data protection, and secure systems design. 
  • Demonstrated experience securing enterprise cloud environments in Azure, AWS, and/or OpenShift, including the use of platform-native security tools and configurations (e.g., Azure Defender, AWS Security Hub, OpenShift RBAC/Network Policies). 
  • Proficient in log analysis, threat detection, and response using tools such as SIEM, EDR, and other telemetry systems. 
  • Advanced knowledge of authentication protocols (Kerberos, SAML, OAuth, etc.), network protocols (TCP/IP, DNS, DHCP), and secure communications. 
  • Strong scripting or automation skills (e.g., PowerShell, Python, Bash) to support integration and operational efficiency. 
  • Proven ability to analyze complex problems, design robust solutions, and deliver scalable, secure systems. 
  • Experience leading technical projects, managing priorities, and delivering results with minimal supervision. 
  • Strong communication and documentation skills; able to convey complex technical topics to a range of audiences and produce clear operational and architectural documentation. 
  • Demonstrated ability to lead peers, mentor junior staff, and foster technical growth across the team. 
  • Relevant certifications preferred (e.g., CISSP, CEH, GIAC, Microsoft Security Operations Analyst, CompTIA Security+). 


Working Conditions
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.  Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

  • Standard office environment with frequent telephone communication, computer operation, and other office productivity machinery, such as a copy and printer machine. 
  • Occasional moving and positioning supplies in excess of 20 pounds
  • All employees are expected to present themselves in a professional manner in alignment with the financial services industry
  • Ability to sit for prolonged periods of time
  • Ability to operate standard PC equipment
  • Ability to manage frequent deadlines and tight schedules

 

Hybrid Work Option

  • Opportunity to work from home up to three days per week. Eligibility dependent upon factors detailed in PERA's Work from Home Policy.

Qualifications

Interested Candidates:
Complete the employment application online at https://www.copera.org/careers. Please have copies of your resume and cover letter available to upload.

Job Description Disclaimer

This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of an employee. Duties, responsibilities, and activities may change or be assigned with or without notice.

Unfortunately, at this time, PERA cannot consider candidates that require sponsorship (now or in the future), or are located outside of the US.

All Colorado PERA employees are subject to PERA’s Ethics Policy and some employees are subject to the Personal Trading Policy. These policies include restrictions on outside business activities and employment and have certain requirements on personal trading.  You may request copies of these policies from PERA’s talent acquisition team and any questions can be answered by PERA’s Investment Administration team.

 

 About Colorado PERA

Looking for a career where you can make a difference? Colorado PERA offers benefit services to public employees across Colorado, including teachers, state troopers, snowplow drivers, correctional officers and many others who provide valuable services. As Colorado’s largest pension plan, we serve and educate over 700,000 members who are former and current public employees. 

At PERA you will earn more than a paycheck. PERA is a culture where you can grow your potential and work in an inclusive environment, where diverse perspectives are valued. We hire exceptional employees and recognize that our people are our best asset. Not only do we make sound investments for our members, PERA invests in our employees’ growth through training and leadership opportunities.

To promote wellbeing, we offer hybrid or flexible working options for most roles and a total rewards and benefit program including health, dental and vision coverage - eligibility starts the first day of the month following the date of hire for most plans; generous paid time off and volunteer hours; pension and retirement plans, including PERA’s defined benefit plan, 457 defined contribution plan, and 401(k) employer match, as applicable; tuition assistance; free, convenient on-site parking or RTD subsidy; free on-site fitness center to stay active; employee assistance program; training, leadership and mentoring programs and more. PERA is a Public Service Loan Forgiveness qualifying employer.

To learn more about life at PERA, watch this video or visit www.copera.org/careers.

 

Position Title: Senior Cloud Security Engineer
Division: Information Security
Reports to: Information Security Manager
Job Status: Full-time, Exempt
Salary: $125,000 to $150,000 Annual, Commensurate with experience
Posting Dates: 10/31/2025 to 11/23/2025

Apply Now

Phone*
search
search

No results found.

Do you consent to receiving text communications related to your job application via SMS from Colorado Public Employees' Retirement Association, which may include autodialed and automated messages, at the mobile number provided? Message frequency may vary and applicable data rates may apply.*
Attach Resume/CV
Choose File

Thanks!

An email has been sent to you with a password to access your account.


Ready for the next step?

Add your availability!
Apply