Cloud Engineer

About The Position

Requirements

• Possess the knowledge and capability to design, deploy, and maintain GovCloud-based infrastructures across AWS and Azure, ensuring high availability, scalability, and security for mission-critical applications.
• Required expertise includes cloud architecture, networking, virtualization, containerization, and security best practices, with proficiency in Infrastructure as-Code (IaC) solutions such as Terraform or AWS CloudFormation.
• Experience in hybrid and multi-cloud configurations, including Virtual Private Cloud (VPC) peering, identity management (IAM), and cross-domain solutions.
• Strong expertise in the Authority to Operate (ATO) process is required, including preparing security documentation, conducting compliance assessments, and maintaining continuous monitoring per DoD Risk Management Framework (RMF), NIST 800-53 Rev. 5, FedRAMP, and DoD IL-4/IL 5 security mandates.
• Optimize cloud resources for compute, storage, and networking efficiency while ensuring full compliance with DoD governance policies.
• Experience designing, deploying, and managing AWS and Azure cloud environments with a focus on security, automation, and scalability.
• Required expertise includes Identity and Access Management (IAM), role-based access control (RBAC), Zero Trust Architecture (ZTA), and cloud networking configurations such as VPC peering, subnets, VPNs, and security groups.
• Demonstrate proficiency in Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, or ARM templates, ensuring secure and scalable deployments.
• Experience supporting Authority to Operate (ATO) processes is required, including preparing System Security Plans (SSP), Security Assessment Reports (SAR), and Plans of Action & Milestones (POA&M), and maintaining compliance with DoD governance frameworks and NIST requirements.
• Collaborate with cybersecurity teams to implement security controls in accordance with FedRAMP, RMF, and DoD IL-4/IL-5 security mandates, while optimizing cloud resource allocation for efficiency.
• A Bachelor’s degree in Computer Science, Information Systems, or a related field, or five (5) years of equivalent experience in cloud engineering.
• Must be a US citizen and able to obtain a clearance.

Nice To Haves

• AWS Certified Solutions Architect – Associate
• Microsoft Certified: Azure Solutions Architect Expert
• Google Professional Cloud Architect

Responsibilities

• Design, deploy, and maintain secure cloud environments in AWS and Azure, ensuring compliance with DoD cloud security frameworks and best practices.
• Configure identity and access management (IAM) solutions, enforce role-based access controls (RBAC), and manage cloud security groups and firewalls.
• Optimize cloud networking configurations, including VPC peering, VPNs, and cross-domain connectivity to ensure secure and efficient cloud operations.
• Support the development of Infrastructure-as-Code (IaC) solutions using Terraform, CloudFormation, or ARM templates to automate secure cloud deployments.
• Contribute to the Cloud Security & Performance Optimization Report, detailing cloud security configurations, resource utilization efficiencies, and compliance measures.
• Track and report Kubernetes and other workload-specific cloud resource usage by Work Order, using GovCloud-native observability tools (e.g., Azure Monitor, AWS CloudWatch, Cost Explorer).
• Coordinate with other Work Order contractors to reconcile prepay or reservation usage against actual consumption and provide monthly reports on computer and storage allocation, tagging compliance, and projected costs.
• Advise the Government on workload placement and optimization strategies across IL2, IL4, and IL5 environments to reduce cost while maintaining performance and security compliance.
• Provision and maintain IL2, IL4, and IL5 GovCloud infrastructure using native Azure and/or AWS tools where feasible.
• Implement cloud native services for monitoring (e.g., CloudWatch, Azure Monitor), cost tracking, and compliance automation to support scalability, security, and chargeback alignment.
• Provision infrastructure in coordination IAM, Kubernetes, Data Lake, CI/CD and audit integration, and procurement and license validation.
• Provision and manage shared container environments and storage for dependent Work Orders, ensuring secure, efficient resource allocation and cross-Work Order operability.

Benefits

• A competitive salary with performance bonus opportunities.
• Comprehensive healthcare benefits, including medical, vision, dental, and orthodontia coverage.
• A substantial retirement plan with no vesting schedule.
• Career development opportunities, including on-the-job training, tuition reimbursement, and networking.
• A positive work environment where employees are respected, supported, and engaged.