Cloud Security Engineer

May 23, 2026

Other Jobs To Apply

Together we fight for everyone’s opportunity for a better financial future.We will do this together — with customers, partners and colleagues. We will fight for others, not against: We will stand up for and champion everyone’s access to opportunities. The status quo is not good enough … we believe every individual and every community deserves access to financial opportunities. We are determined to support both individuals and communities in reaching a better financial future. We know that reaching this future depends on our actions today.Like our Purpose Statement, Voya believes in being bold and committed to action. We are committed to a work environment where the differences that we are born with — and those we acquire throughout our lives — are understood, valued and intentionally pursued. We believe that our employees own our culture and have a responsibility to foster an environment where we all feel comfortable bringing our whole selves to work. Purposefully bringing our differences together to positively influence our culture, serve our clients and enrich our communities is essential to our vision.Are you ready to join a company with a strong purpose and a winning culture? Start your Voyage – Apply Now<div><div><div>***This role is remote with the expectation that candidates are based near one of the following Voya office locations: Windsor, CT; Boston, MA; or Atlanta, GA.***</div><div></div><div></div>Voya is seeking a Senior IT Security Specialist to strengthen our SaaS Security Posture Management (SSPM), Cloud Security Posture Management (CSPM), and container security capabilities across a rapidly evolving hybrid cloud and SaaS ecosystem. </div><div>This role will partner closely with Cloud, DevSecOps, Application Security, and Platform Engineering teams to identify, assess, and remediate security risks across SaaS platforms, public cloud infrastructure, and containerized workloads. The ideal candidate brings strong hands-on experience with cloud-native security controls, automation, Infrastructure-as-Code (IaC), Policy-as-Code (PaC), and modern security tooling. </div><div>Experience with CrowdStrike Falcon Shield, Palo Alto Prisma, Cortex or similar platforms is highly desirable. Familiarity with AI Security Posture Management (AI-SPM) and MLOps security is a strong plus as Voya continues to expand its AI-enabled capabilities. </div><div> </div><div>Key Responsibilities </div><div>SaaS & Cloud Security Posture Management </div><div><ul><li>Support SaaS Security Posture Management (SSPM) initiatives across enterprise SaaS platforms. </li></ul></div><div><ul><li>Configure, operate, and tune SSPM/CSPM tools to identify misconfigurations, excessive permissions, and risky integrations. </li></ul></div><div><ul><li>Support and mature CSPM capabilities across AWS and Azure, including continuous monitoring and risk prioritization. </li></ul></div><div><ul><li>Partner with application owners to drive remediation of SaaS and cloud security findings. </li></ul></div></div><div><div>Cloud & Container Security </div><div><ul><li>Secure cloud-native workloads across AWS and Azure using native and third-party security controls. </li></ul></div><div><ul><li>Support container and Kubernetes security, including image scanning, runtime protections, and policy enforcement. </li></ul></div><div><ul><li>Collaborate with DevSecOps teams to embed security controls into CI/CD pipelines. </li></ul></div><div>Automation, IaC & PaC </div><div><ul><li>Develop and maintain security automation using scripting languages (Python, PowerShell, Bash). </li></ul></div><div><ul><li>Implement and review Infrastructure-as-Code (Terraform, ARM, CloudFormation) with a security-first mindset. </li></ul></div><div><ul><li>Design and enforce Policy-as-Code (OPA, Sentinel, native cloud policies) to prevent insecure deployments. </li></ul></div><div><ul><li>Enable shift-left security by integrating controls early in the development lifecycle. </li></ul></div><div>AI / ML Security (Plus) </div><div><ul><li>Contribute to emerging AI Security Posture Management (AI-SPM) efforts. </li></ul></div><div><ul><li>Partner with platform and data teams to assess and secure MLOps pipelines, models, and supporting infrastructure. </li></ul></div><div><ul><li>Help define guardrails for AI usage, data access, and model governance. </li></ul></div><div>Risk, Governance & Collaboration </div><div><ul><li>Translate technical findings into actionable risk insights for remediation. </li></ul></div><div><ul><li>Support audits, risk assessments, and regulatory inquiries related to cloud and SaaS security. </li></ul></div><div><ul><li>Stay current on emerging threats, SaaS attack patterns, cloud security trends, and AI security risks. </li></ul></div><div><ul><li>Mentor junior team members and influence secure-by-design practices across the organization. </li></ul></div><div> </div><div>Required Qualifications </div></div><div><div><ul><li>5+ years of experience in information security, with strong focus on cloud and SaaS security. </li></ul></div><div><ul><li>Hands-on experience with Cloud Security Posture Management (CSPM) in AWS and/or Azure. </li></ul></div><div><ul><li>Experience with SaaS Security Posture Management (SSPM) tools such as: </li></ul></div><div><ul><li>CrowdStrike Falcon Shield </li></ul></div><div><ul><li>Palo Alto (SaaS / Prisma-related capabilities) </li></ul></div><div><ul><li>or similar platforms </li></ul></div><div><ul><li>Strong understanding of container security and Kubernetes environments. </li></ul></div><div><ul><li>Proficiency in scripting and automation (Python, PowerShell, Bash). </li></ul></div><div><ul><li>Practical experience with Infrastructure-as-Code (IaC) and Policy-as-Code (PaC). </li></ul></div><div><ul><li>Solid understanding of IAM, identity federation, least-privilege access, and SaaS permissions models. </li></ul></div><div><ul><li>Ability to work cross-functionally with cloud, DevOps, AppSec, and platform teams. </li></ul></div><div> </div><div>Preferred / Nice-to-Have Qualifications </div><div><ul><li>Experience securing MLOps pipelines and AI-enabled platforms. </li></ul></div><div><ul><li>Familiarity with AI Security Posture Management (AI-SPM) concepts and tooling. </li></ul></div><div><ul><li>Experience integrating security into CI/CD pipelines. </li></ul></div><div><ul><li>Knowledge of cloud-native security services (AWS Security Hub, GuardDuty, Azure Defender, etc.). </li></ul></div><div><ul><li>Security certifications such as CISSP, CCSP, AWS/Azure Security certifications. </li></ul></div><div> </div><div>What Success Looks Like </div></div><div><div><ul><li>Improved visibility and risk reduction across Voya’s SaaS and cloud environments. </li></ul></div><div><ul><li>Measurable reduction in high-risk misconfigurations and over-privileged access. </li></ul></div><div><ul><li>Increased automation and policy-driven enforcement of security controls. </li></ul></div><div><ul><li>Strong partnership with engineering teams, enabling security without slowing delivery. </li></ul></div><div><ul><li>Forward-looking contributions to AI and MLOps security strategy. </li></ul></div></div>Compensation Pay Disclosure: Voya is committed to pay that’s fair and equitable, which means comparable pay for comparable roles and responsibilities.The below annual base salary range reflects the expected hiring range(s) for this position in the location(s) listed. In addition to base salary, Voya offers incentive opportunities (i.e., annual cash incentives, sales incentives, and/or long-term incentives) based on the role to reward the achievement of annual performance objectives. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Voya Financial is willing to pay at the time of this posting.Actual compensation offered may vary from the posted salary range based upon the candidate’s geographic location, work experience, education, licensure requirements and/or skill level and will be finalized at the time of offer. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. $114,480 - $130,000Be Well. Stay Well.Voya provides the resources that can make a difference in your lives. To us, this means thriving physically, financially, socially and emotionally. Voya benefits are designed to help you do just that. That’s why we offer an array of plans, programs, tools and resources with one goal in mind: To help you and your family be well and stay well.What We Offer<ul><li>Health, dental, vision and life insurance plans</li><li>401(k) Savings plan – with generous company matching contributions (up to 6%)</li><li>Voya Retirement Plan – employer paid cash balance retirement plan (4%)</li><li>Tuition reimbursement up to $5,250/year</li><li>Paid time off – including 20 days paid time off, nine paid company holidays and a flexible Diversity Celebration Day.</li><li>Paid volunteer time — 40 hours per calendar year</li></ul>Learn more about <a href="https://assets.voya.com/m/65c932d9fbfe4634/original/Voya_Benefits_Highlights.pdf" target="_blank" rel="noopener noreferrer">Voya benefits (download PDF)</a>Critical SkillsAt Voya, we have identified the following critical skills which are key to success in our culture: <ul><li>Customer Focused: Passionate drive to delight our customers and offer unique solutions that deliver on their expectations.</li><li>Critical Thinking: Thoughtful process of analyzing data and problem solving data to reach a well-reasoned solution.</li><li>Team Mentality: Partnering effectively to drive our culture and execute on our common goals. </li><li>Business Acumen: Appreciation and understanding of the financial services industry in order to make sound business decisions.</li><li>Learning Agility: Openness to new ways of thinking and acquiring new skills to retain a competitive advantage.</li></ul>Learn more about <a href="https://corporate.voya.com/careers/working-voya-financial/critical-skills" target="_blank" rel="noopener noreferrer">Critical Skills</a>Equal Employment OpportunityVoya Financial is an equal-opportunity employer. Voya Financial provides equal opportunity to qualified individuals regardless of race, color, sex, national origin, citizenship status, religion, age, disability, veteran status, creed, marital status, sexual orientation, gender identity, genetic information, or any other status protected by state or local law.<div><div><div><div><div><div><div><div><div><div><div><div><div>Reasonable AccommodationsVoya is committed to the inclusion of all qualified individuals. As part of this commitment, Voya will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please reference <a href="https://www.voya.com/page/applicants-disabilities" target="_blank" rel="noopener noreferrer">resources for applicants with disabilities</a>.<a href="https://www.voya.com/articles/other-helpful-information#employment" target="_blank" rel="noopener noreferrer">Misuse of Voya's name in fraud schemes</a></div></div></div></div></div></div></div></div></div></div></div></div></div>

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...