Senior Cloud Security Engineer

Umbra is an American space technology company delivering advanced systems, from sensors to spacecraft, that empower customers worldwide with unmatched access to critical information from space. Our mission is simple and ambitious: redefine space—for people, systems, and missions in every domain. Umbra’s ecosystem operates through three business units: Remote Sensing (the data), Space Systems (the components), and Mission Solutions (the platforms).Together, our teams develop capabilities that deliver persistent access, resilient performance, and mission-ready solutions, advancing U.S. space leadership while keeping the world safe and informed.

About the Job

As we continue to innovate, we are looking for a dedicated Senior Cloud Security Engineer to join our team. In this critical role, you will lead the charge in designing and implementing robust security measures across our cloud-based infrastructure. You will be responsible for ensuring the compliance, safety, and integrity of our systems while collaborating with engineering and operations teams to integrate security solutions seamlessly into our infrastructure.

Your expertise will help in evaluating cloud services and deploy security controls that adhere to best practices, safeguarding our applications and sensitive data from cyber threats. If you are passionate about cloud security and want to make a tangible impact on space technology, we invite you to apply!

Our aim is to hire this position to work in Umbra's Santa Barbara/Goleta, CA office.

Key Responsibilities

• Possess a deep understanding of cloud security architecture, threat modeling, and compliance frameworks, and make informed decisions about security trade-offs and risk management.
• Work with cross-functional teams to design, implement, and continuously improve secure DevOps pipelines and secure software development lifecycles (SDLC).
• Design and implement security automation tools and processes to improve system security and minimize manual intervention in securing software releases.
• In partnership with product development and information security team members, support risk assessment activities of cloud environments to identify & remediate vulnerabilities and evaluate security posture.
• Collaborate with engineering teams to define secure cloud architectures and provide guidance on cloud services and technologies.
• Be the continuous advocate for improving security best practices and champion for a security minded culture with all technical staff to increase overall awareness and capabilities in addressing security risks.
• Monitor cloud environments for security incidents and anomalies, responding promptly to alarms, events, and threats
• Assist in compliance efforts with regulations and standards such as NIST 800-171 and CMMC, and others relevant to cloud security. Implement security frameworks, best practices, and processes for cloud security operations.
• Take ownership and follow through, consistently and independently delivering results.
• Possess initiative and urgency, with a bias toward action.
• Provide training and resources to team members to enhance awareness of cloud security risks and best practices.
• Other professional duties as assigned.

Required Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. Relevant experience can be a substitute for a degree.
• 6+ years of experience in cloud security, or similar role deeply integrated into DevOps environments, integrating security into CI/CD pipelines.
• Strong knowledge of cloud security principles and practices, particularly with major cloud service providers (AWS, Azure, GCP).
• Experience with security infrastructure tools such as IAM & access control, encryption & key management, vulnerability management and threat detection systems.
• Experience working with Infrastructure as Code (Terraform, Cloud Formation etc).
• Familiarity with Kubernetes and container security principles.
• Familiarity with compliance frameworks and standards relevant to cloud security.
• Excellent problem-solving skills and the ability to communicate complex concepts clearly to technical and non-technical audiences.
• A strong understanding of networking concepts, security protocols, and risk management principles.

Desired Qualifications

• Certifications such as Certified Cloud Security Professional (CCSP), AWS Certified Security – Specialty, or equivalent are a plus.
• Background in threat modeling, penetration testing, or security architecture reviews
• Experience working in the aerospace or defense sectors is an advantage.
• Experience with federal compliance frameworks (FedRAMP, CMMC)
• Strong analytical and strategic thinking skills.

• Flexible Time Off, Sick, Family & Medical Leave
• Medical, Dental, Vision, Life, LTD, STD (employer funded)
• Vol Life, Critical Illness, Accidental, Hospital Indemnity, Pet Insurance (employee funded)
• 401k with 3% non-elective company contribution
• Stock Options
• Free Parking
• Free lunch daily in office

Umbra is an Equal Opportunity Employer. We do not discriminate in hiring on the basis of sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected veteran status, or any other characteristic protected by federal, state, or local law.

Employment Eligibility Verification

In compliance with federal laws, all hired persons will be required to verify their identity and eligibility to work in the United States by completing the required Employment Eligibility Verification Form (I-9 Form) upon hire.

ITAR/EAR Requirements

This position may include access to technology and/or data that is subject to U.S. export controls pursuant to ITAR and EAR. To comply with federal export controls, all persons hired must be a U.S. citizen, U.S. national, U.S. lawful permanent resident, refugee or asylee as defined by 8 U.S.C. § 1324b(a)(3), or must otherwise be eligible to obtain the required authorizations from the U.S. Department of State and/or U.S. Department of Commerce as applicable. 

Pay Transparency
This job posting may cover multiple career levels. To ensure greater transparency, we provide base salary ranges for all roles, regardless of location. Our standard pay ranges are based on the role’s function and level, benchmarked against similar growth-stage companies. Compensation may vary based on geographical location, as certain regions may have different cost-of-living factors. The final offer will also be influenced by the candidate's skills, responsibilities, and relevant experience.

Compensation Range

The Compensation Range for this role is $140,000 - $175,000 DOE.