NLM Cloud Engineer III

About The Position

Requirements

• 6+ years of relevant cloud engineering, DevOps, or infrastructure experience
• Masters degree or other degree(s) in Computer Science, Information Technology, Engineering, or related fields
• Demonstrated experience with cloud platforms including Google Cloud (GC), Amazon Web Services (AWS), and Microsoft Azure, including IaaS, PaaS, and SaaS configurations
• Proficiency with CI/CD tools such as GitLab, GitHub, TeamSite, Nexus, Kubernetes, Ansible, and Terraform
• Experience with container orchestration platforms such as Kubernetes, Anthos, and OpenShift
• Experience with Infrastructure as Code (IaC) tools including Terraform, Ansible, Puppet, and AWS Cloud Development Kit (CDK)
• Familiarity with FISMA compliance requirements and federal security frameworks, including NIST SP 800-53 and NIST SP 800-171
• Experience with vulnerability scanning and penetration testing tools such as Tenable, Prowler, Netsparker, Checkmarx, and OWASP
• Experience with monitoring and logging tools such as EFK stack, Prometheus, and Grafana
• Must be authorized to work in the United States and able to obtain a Public Trust background investigation clearance

Nice To Haves

• Experience supporting federal IT environments, particularly within HHS, NIH, or NLM
• Familiarity with Identity and Access Management (IAM) and administration of commercial cloud accounts
• Experience with distributed computing systems, batch queuing software, and open-source map/reduce frameworks such as Hadoop
• Proficiency with database technologies including RDS, MySQL, MongoDB, MS SQL, PostgreSQL, and Elasticsearch
• Experience with version control systems including Bitbucket and GitLab
• Familiarity with Apache server services and open-source software administration
• Experience supporting Authority to Operate (ATO) processes and developing or maintaining System Security Plans (SSPs)
• Experience with ticketing and documentation systems such as JIRA, ServiceNow, and Confluence Wiki
• Familiarity with FedRAMP requirements for cloud service providers
• Relevant certifications such as AWS Certified Solutions Architect, Google Professional Cloud Engineer, Microsoft Azure Administrator, or equivalent

Responsibilities

• Recommend, deploy, and manage version control systems (e.g., Bitbucket, GitLab) and provide guidance on platform selection on a case-by-case basis
• Implement and administer CI/CD pipelines for all approved development frameworks at NLM using tools such as GitLab, GitHub, TeamSite, Nexus, Kubernetes, Ansible, and Terraform
• Recommend and configure Infrastructure as Code (IaC) tools including Terraform, Ansible, Puppet, and CDK to support scalable and repeatable deployments
• Implement, administer, and support cross-datacenter deployments using Docker and other containerization platforms
• Set up, administer, and maintain elastic and cost-efficient container orchestration environments using Kubernetes, Anthos, and OpenShift
• Provide monitoring and logging capabilities using EFK stack, Prometheus, and Grafana to collect, store, and analyze performance and availability data for applications and infrastructure
• Configure and manage vulnerability scanners and penetration testing tools (Tenable, Prowler, Netsparker, Checkmarx, OWASP) to ensure the security of software applications and infrastructure
• Provide technical support and guidance to development teams for migrating to and utilizing the DevOps platform
• Deliver day-to-day cloud operations support, including secure remote access, administration of cloud computing and storage platforms, compute and cost model analysis, and implementation of selected cloud solutions
• Support cybersecurity and risk management across the NLM enterprise, including system, network, and database administration as well as application development
• Resolve application software, firmware, system, and hardware vulnerabilities uncovered by regular security scanning; assist in creating, developing, and maintaining Authority to Operate (ATOs) and System Security Plans (SSPs)
• Track and manage known vulnerabilities using Tenable Security Center
• Provide technical support for systems and database design, coordinating and implementing open-source software such as Apache server services and managing databases including RDS, MySQL, MongoDB, MS SQL, PostgreSQL, and Elasticsearch
• Provide customer service to internal and external staff, solving issues in highly technical environments using plain language communication; administer user accounts, set disk quotas, monitor performance, and track issues through JIRA and ServiceNow or equivalent ticketing systems; maintain documentation using Confluence Wiki
• Administer, configure, and maintain distributed computing systems using batch queuing software and open-source map/reduce frameworks, including Hadoop; implement and maintain CI/CD clusters on GitHub and/or GitLab
• Support cloud development and computing infrastructure for production web services, high-performance computing, and high-throughput processing environments through administration of commercial cloud accounts via IAM and monitoring cloud resource utilization efficiency
• Assist the Government in implementing, maintaining, and executing computer security practices, including FISMA policies, firewalls, intrusion detection, secure computing environment design, and disaster recovery
• Conduct ongoing vulnerability assessments and threat identification; present results and ensure resolution of identified vulnerabilities within prescribed time limits
• Ensure compliance with Section 508 accessibility requirements for all developed ICT products, platforms, and services
• Comply with all HHS/NIH information security policies, including completing mandatory annual security awareness, privacy, and records management training
• Adhere to HHS Rules of Behavior and NLM Policy on Health-Related Data About Individuals, including signing required non-disclosure agreements prior to performing work

Benefits

• full health and dental for you and your dependents
• retirement and HSA accounts
• short- and long-term disability insurance
• life and accident insurance
• paid time off
• 11 federal holidays