• Cloud Security Engineer

    SAIC (Macdill AFB, FL)


    Description

    SAIC is seeking a Cloud Security Engineer will be responsible for all aspects of cybersecurity risk management and compliance initiatives relating to the use of the cloud computing environment. The candidate must be able to collaborate with cross-functional teams to develop and implement global cloud security architecture and maturity standards. Must have excellent written and verbal skillset, including the ability to effectively explain technical issues and specifications to less technical stakeholders. Must be versed in Risk Management and stay abreast of emerging risk. The candidate must be familiar with multiple cloud platforms, including but not limited to AWS, Azure, and Google.

     

    The Cloud Engineer is a pivotal role within our IT infrastructure team, providing tier three systems support in line with the SIE OPORD. The Cloud Security Engineer designs, develops, manages, and maintains a secure infrastructure leveraging cloud platform security technologies. They use DOD business logic, technical guidance (NIST and vendor), industry and engineering best practices to securely build and scale cloud-native applications and configure network security defenses within the cloud environment.

     

    The engineer will be integral to the systems engineering process, leveraging data for performance enhancement, and participating actively in working groups, design reviews, and system testing.

    Key Responsibilities:

    + Act as Subject Matter Expert on cloud related cybersecurity and compliance & understand DOD cloud business logic.

    + Provide cloud cybersecurity guidance and direction in design, development, and implementation of automated solutions, based on a set of standards and processes that enable CI/CD developers to easily apply cybersecurity and compliance services.

    + Validate that cloud projects align with cybersecurity and compliance requirements.

    + Assist in the development of cybersecurity strategic plans and roadmaps.

    + Participate in cloud infrastructure design reviews.

    + Perform architecture diagram to environment comparison to ensure accuracy.

    + Submit eMASS packages to the Security Control Assessor Representative (SCAR).

    + Prepare or assist in preparing IMT-56 Security Impact Analysis for changes to eMASS packages under continuous monitoring.

    + Understand the RMF process (and the supporting documents) and how SOCOM implements the RMF Process.

    + Understand the AWS and Azure environment (in a security roles, you will need view only or power user (practice least privilege) access to the environments).

    + Be familiar with creating artifacts for eMASS (diagram, scans, STIGS,...).

    + Know how to perform STIG'ing.

    + Monitor and track POA&M within eMASS.

    + Be familiar with STIGs, SRGs, Vendor documentation (AWS CCG, MS Security Benchmarks) and Industry Best Practices related to the products and services hosted within the environments.

    + Provide Cloud Security relevant guidance before, during, after the accreditation process of eMASS packages.

    + Read and track applicable CTOs.

    + Provide security related insight and guidance on CRQs or TASKs within remedy.

    + Update C5ISR required paperwork.

    + Prioritize multiple workloads to meet deadlines.

    Qualifications

    Required Experience:

    + Bachelor's Degree and 5+ years of security experience involving design, deployment, configuration, and optimization OR Master's Degree & 3+ years of experience.

    + Proven track record in managing production Windows Servers and implementing top-tier security practices within an enterprise environment.

    + Proficiency in AWS/Azure platforms and applications.

    + Familiar with cybersecurity architecture design principles.

    + Strong experience with cloud and application security.

    + Working knowledge of NIST Cybersecurity Framework.

    Certification Requirements:

    + DoDD 8570.01-M IAT Level II.

    + Microsoft Certified Expert in the Azure product line.

    + AWS Solutions Architect Professional.

    + Microsoft Certified Azure DevOps Engineer Expert.

    + Microsoft Certified: Azure Solutions Architect Expert.

    + Cloud certification or Professional certification to the candidate’s area of expertise.

    + Certified Cloud Security Professional (CCSP) or equivalent is desired.

    Additional Information:

    + Flexibility to work shifts and weekends as required.

    + Travel requirements: Less than 10%.

     

    Candidates with a strong foundation in project planning and a demonstrated technical proficiency in Microsoft Windows Server 2016/2019/2022 and Cloud services are encouraged to apply. This role is designed for individuals who are passionate about continuous improvement and excel in a dynamic, collaborative environment.

     

    SAIC accepts applications on an ongoing basis and there is no deadline.

     

    Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

    REQNUMBER: 2505150

    SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability