Job Description

Cloud Cybersecurity Engineer

Education and Years of Experience: Bachelor’s Degree and 8+ years or more of experience; additional years of experience may be accepted in lieu of degree.

Program Description: This role supports the U.S. Air Force Cloud One Architecture and Common Shared Services contract and currently has an opening for a Cloud Cybersecurity Engineer. We are seeking a Cloud Cybersecurity Engineer supporting AWS, Azure, GCP, and Oracle Clouds. This is an exciting opportunity to use your experience to modernize a leading, global-scale multi-cloud environment in support of a critical mission, supporting USAF system resiliency, security, and cost effectiveness.

Location: This position will be remote with onsite at the client 2-3 days per week.  Locations are Boston, MA (Hanscom AFB), Huntsville, AL or Reston, VA.

Responsibilities:
• Dedicated support of IL2, IL4, IL5, and IL6 cloud environments.
• Develop and present reports and updates to senior management, including the weekly action report and monthly operations report. Reports cover program/system status updates, site visits, issues/concerns/impacts, data spills, and other relevant items.
• Design, deploy, configure, operate, and maintain authorizations and accreditation of the C1 Architecture for Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle Cloud Infrastructure in NIPRNet and SIPRNet
• Oversee the cybersecurity authorizations required artifacts to eMASS (including change requests) to achieve milestones such as Interim Authority to Test (IATT) and Authorization to Operate (ATO)
• Experience migration of authorizations from NIST Rev 4 to Rev 5
• Experience implementing cATO leveraging automation and dashboards
• Support conducting cybersecurity authorization activities to comply with all current Cybersecurity and IA manuals, instructions, and guides within the DoDI 8500.01 and DON 5239.
• Supply RMF-required authorization-related documentation and artifacts
• Draft and update the Contractor’s System Security Plan
• Provide and execute a plan for vulnerability and compliance scanning
• Implementation of security procedures, and verify information system security requirements, including coordinating the execution, review, and disposition of STIG checklists for systems, applications, developed code and other components.
• Develop and maintain system security documentation, including drafting, reviewing, editing, and recommending guidance for Standard Operating Procedures (SOP), Tactics, Techniques, & Procedures (TTP), Plan of Action and Milestones (POA&M) and Federal Information Security Management Act (FISMA) Score Card.
• Participate in regular briefings with the customer on cybersecurity status, including preparing briefing materials
• Work closely with government Cyber & technical teams to support ATO conditions and requirements.
• Prepare detailed technical documentation to support development and operational processes
• Collaborate with team members and provide mentorship to junior staff, fostering a learning environment
• Act as the Cyber manager to assess employee performance, hire new employees, and ensure compliance with corporate training requirements

Required Skills:
• Active Secret Clearance or able to be cleared.
• Bachelors and 8+ years of prior relevant experience. In lieu of degree, 12+ years experience
• US citizenship required
• CompTIA Security+ or equivalent certification (IAT Level II). 
• Hands-on experience supporting cloud environments (AWS, Azure, GCP, or OCI). 
• Experience with Infrastructure as Code, automation, or DevOps/DevSecOps tools. 
• Familiarity with CI/CD pipelines and cloud-native development practices. 
• Working knowledge of Linux/Unix systems, networking fundamentals, and version control tools (Git). 
• Proficiency in at least one scripting or programming language (e.g., Python, Bash). 
• Strong written and verbal communication skills. 

Preferred Qualifications
• Experience with USAF Cloud One or Platform 1
• Experience with Zero Trust Architecture
• Cloud certifications in AWS, Azure, Google, or Oracle clouds
• Certifications: CISSP