Cloud Architect

About The Position

Requirements

• U.S. Citizenship Required
• Public Trust + Suitability Clearance Required
• Must pass DOJ background investigation and drug testing
• Master's Degree Required (Cybersecurity, Cloud Computing, Computer Science, or related field)
• 10 years of experience in cloud and cloud security solutions in FEDERAL GOVERNMENT systems
• Strong AWS networking expertise: native firewall, Direct Connect, Outposts, reverse proxies
• Proven design and implementation of continuous monitoring for cloud systems
• Capability to design AI-powered tools that scan cloud accounts/VPCs and identify control gaps
• Strong experience interpreting Splunk SIEM reports and alerts
• Proficient with AWS GuardDuty, Security Hub, and Amazon Inspector
• Deep understanding of end-to-end data encryption (SSL/TLS, KMS)

Nice To Haves

• AWS Solutions Architect Professional
• AWS Security Specialty
• CCSP, CISSP
• Prior DOJ or BOP experience and domain knowledge
• FedRAMP authorization experience (SaaS, PaaS, IaaS)
• Multi-cloud (Azure, GCP) in addition to AWS depth
• Hands-on with AI/ML-based compliance automation tools

Responsibilities

• Architect cloud security solutions across AWS (and multi-cloud as required) for BOP federal systems
• Design and implement continuous monitoring (ConMon) for cloud systems and applications
• Build AI-powered compliance tooling that scans cloud accounts and VPCs, collects FedRAMP-specific responses, and identifies unmet controls
• Define cloud security controls aligned to NIST, FedRAMP, CIS, AWS, and Azure best practices
• Review and interpret reports from AWS GuardDuty, Security Hub, Amazon Inspector, and Splunk
• Architect AWS Direct Connect, AWS Outposts, native firewall, and reverse-proxy configurations
• Lead end-to-end data encryption design (in transit and at rest), including SSL/TLS implementation
• Identify vulnerabilities, particularly data or configuration tampering risks