Senior Cloud Security Engineer

Job Description

Who We Are Zinnia is the leading technology platform for accelerating life and annuities growth. With innovative enterprise solutions and data insights, Zinnia simplifies the experience of buying, selling, and administering insurance products. All of which enables more people to protect their financial futures. Our success is driven by a commitment to three core values: be bold, team up, deliver value ? and that we do. Zinnia has over $180 billion in assets under administration, serves 100+ carrier clients, 2500 distributors and partners, and over 2 million policyholders. Who You Are As a Senior Cloud Security Engineer, you will leverage your cloud, security, and automation expertise to design and implement secure, scalable, and resilient solutions across AWS (primary), Azure, and optionally GCP. You will focus on enabling security by design, building reusable, automated modules and frameworks to enforce security standards and reduce risk in multi-cloud and containerized environments. You will partner closely with Site Reliability Engineering, Cloud Engineering, and Product Engineering teams, embedding security in infrastructure, CI/CD pipelines, and orchestration workflows. As a trusted advisor, you will coach, mentor, and enable teams, driving a culture of secure-by-default engineering and continuous improvement. If you enjoy architecting security controls, standardizing infrastructure through IaC, and developing automation to scale security across cloud environments?this role is for you. What You?ll Do Design and implement secure, scalable, and resilient solutions across AWS (primary) and Azure, with optional exposure to GCP. Secure Kubernetes and container orchestration platforms, applying best practices for isolation, runtime security, and workload protection. Design, develop, and review security-focused Infrastructure-as-Code (IaC) modules using Terraform, Ansible, AWS CloudFormation or Helm ensuring all modules are secure, compliant, and reusable across tenants and projects. Implement and manage workflow automation/orchestration to scale cloud security operations. Embed cloud security best practices into system design, including IAM, encryption, key management, network segmentation, and zero-trust principles. Identify and mitigate risks in cloud and containerized environments through architecture reviews and threat modelling. Enhance the usage of existing CSPM, CWPP, CIEM, DSPM tools by building custom solutions, automation, and integrations using Python or similar scripting languages. Partner with engineering and security teams to embed security into CI/CD pipelines and enable DevSecOps practices. Develop, deploy, and maintain security tools, playbooks, and SOPs to monitor, detect, and respond to threats. Mentor and coach junior engineers while contributing to the growth of the Cloud Security program. What You?ll Need 7+ years of experience in cloud security engineering, cloud architecture, or site reliability engineering. Deep expertise in AWS security concepts; strong understanding of Azure; working knowledge of GCP is a plus. Extensive hands-on experience in securing Kubernetes and container orchestration technologies. Strong experience with Terraform, Helm, Ansible, AWS CF and related IaC/automation frameworks. Proven ability to enhance and extend CSPM, CWPP, CIEM, DSPM platforms with automation and custom solutions. Proficiency in Python or other scripting languages to automate security workflows and integrations. Experience in DevSecOps practices, security automation, and developing security tools/products. Understanding and practical application of threat modelling methodologies. Proven ability to implement zero-trust, IAM, encryption, and data protection strategies. Strong written and verbal communication skills, with the ability to influence technical and non-technical audiences. Desire and ability to mentor junior engineers and shape the future of the cloud security function. Nice To Have (Preferred Qualifications) Knowledge of cloud security frameworks such as NIST CSF, CIS Benchmarks, ISO 27017, CSA CCM, and SOC 2. Security certifications such as AWS Certified Security ? Specialty, Azure Security Engineer Associate, CKS, CISSP, or GIAC Cloud Security certifications. Experience contributing to open-source security projects or building internal security frameworks. WHAT?S IN IT FOR YOU? At Zinnia, you collaborate with smart, creative professionals who are dedicated to delivering cutting-edge technologies, deeper data insights, and enhanced services to transform how insurance is done. Visit our website at www.zinnia.com for more information. Apply by completing the online application on the careers section of our website. We are an Equal Opportunity employer committed to a diverse workforce. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability