×
Register Here to Apply for Jobs or Post Jobs. X

Cloud Security Engineer

Job in North Bethesda, Montgomery County, Maryland, USA
Listing for: Xometry
Full Time position
Listed on 2026-07-18
Job specializations:
  • IT/Tech
    Cybersecurity, Cloud Computing: Infrastructure & Operations, Systems Engineer, Network Security
Salary/Wage Range or Industry Benchmark: 180000 - 200000 USD Yearly USD 180000.00 200000.00 YEAR
Job Description & How to Apply Below
Position: Staff Cloud Security Engineer

Xometry (NASDAQ: XMTR) powers the industries of today and tomorrow by connecting the people with big ideas to the manufacturers who can bring them to life. Xometry's digital marketplace gives manufacturers the critical resources they need to grow their business while also making it easy for buyers at Fortune 1000 companies to tap into global manufacturing capacity.

Xometry is looking for a Staff Cloud Security Engineer to own our cloud security posture and runtime detection capabilities. This is a high-impact, individual contributor role focused on ensuring our live cloud environments and containerized workloads are hardened, continuously monitored, and generating the right signals for our security operations function. This role is about detection architecture, posture management, and runtime visibility.

You will be the primary owner of our Crowd Strike platform, working closely with our MDR providers to ensure alert fidelity, tuning, and appropriate escalation. You will also evaluate and potentially implement a cloud SIEM.

This isn't a role where you watch dashboards and write tickets. You'll be the person who defines how we detect threats, decides how we respond to them, and has the autonomy to fix what you find. If you're tired of maintaining legacy tooling, navigating slow change management processes, or writing findings that disappear into a backlog, this is the opposite of that.

We're a SaaS-first company running a modern, cloud-native stack. We ship fixes, not tickets.

What You'll Contribute
  • Own Crowd Strike Falcon configuration, ensuring policies are appropriately scoped, tuned, and generating actionable alerts.
  • Partner with MDR to define alert routing, triage thresholds, and escalation logic, ensuring the right signals reach the right team.
  • Monitor cloud environments (primarily AWS) for security posture drift: misconfigured IAM roles, overly permissive security groups, exposed storage, and non-compliant resource configurations.
  • Secure Kubernetes clusters and containerized workloads: manage Network Policies, RBAC, Admission Controllers, and runtime detection for anomalous container behavior.
  • Develop and enforce cloud security policies and standards for AWS infrastructure, ensuring secure and scalable deployments align with organizational risk posture.
  • Evaluate and lead the implementation of additional detection tooling, including cloud SIEM platforms, designing detection rules and alerting pipelines.
  • Manage infrastructure as code (IaC) security using Terraform or Open Tofu - ensuring IaC definitions meet security standards before deployment.
  • Automate security posture checks and detection workflows using Python and shell scripting.
  • Stay current with the evolving cloud threat landscape and translate emerging threats into detection coverage or posture improvements.
What You Bring
  • Minimum 8 years of experience in cloud security, security engineering, or a related infrastructure security discipline.
  • Hands‑on experience with a cloud security posture management (CSPM) platform - Crowd Strike, Wiz, Prisma Cloud, Orca, or equivalent. Prior Crowd Strike experience is a plus but not required.
  • Deep familiarity with AWS security architecture: IAM/SCP policy design, VPC networking, security groups, Cloud Trail, and cloud-native security controls. GCP or Azure experience considered in lieu of AWS for strong candidates willing to expand into AWS.
  • Proficiency with infrastructure as code (IaC) tools such as Terraform, Open Tofu, or Cloud Formation, with an understanding of how to enforce security standards within IaC workflows.
  • Strong Python and shell scripting skills for security automation, detection rule development, and tooling integration.
  • Must be a US Citizen or legal permanent resident (Xometry handles ITAR‑controlled data).
Preferred
  • AWS Gov Cloud experience.
  • Hands‑on Kubernetes security experience: securing and managing production clusters, including Network Policies, RBAC, and Admission Controllers.
  • Experience with cloud‑native SIEM solutions, including writing detection rules in Python or SQL.
  • Experience securing microservices architectures, including service mesh security (Istio or Linkerd).
  • Bachelor's degree in…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary