HHS - Cloud Security Engineer/Architect

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
• Minimum 7–10 years of experience in cybersecurity with at least 4 years in cloud security engineering or architecture.
• Hands-on experience securing AWS and/or Azure environments.
• Strong knowledge of cloud-native security services, IAM, encryption, and networking.
• Experience supporting federal cloud environments and compliance frameworks.
• Strong written and verbal communication skills.

Nice To Haves

• AWS Certified Security – Specialist, Microsoft Azure Security Engineer Associate, CCSP, or CISSP

Responsibilities

• Design and implement secure cloud architectures aligned with Zero Trust principles and federal standards.
• Provide security engineering and architectural guidance for AWS, Azure, and other approved cloud platforms.
• Implement and manage cloud security controls including IAM, network segmentation, encryption, and logging.
• Support secure cloud onboarding, system migrations, and modernization initiatives.
• Integrate cloud environments with SOC, SIEM, vulnerability management, and incident response tooling.
• Conduct cloud risk assessments and threat modeling for new and existing cloud services.
• Support FedRAMP-authorized cloud services and validate shared responsibility models.
• Implement and maintain CSPM, CWPP, and CIEM solutions.
• Develop cloud security architecture diagrams, design documents, and implementation plans.
• Ensure compliance with NIST SP 800-53, NIST SP 800-37, NIST SP 800-210, and HHS cloud policies.
• Support continuous monitoring, logging, and audit readiness for cloud systems.
• Collaborate with system owners, ISSOs, DevSecOps teams, and federal stakeholders.
• Provide guidance on container, serverless, and API security in cloud-native environments.
• Support incident response and forensics activities involving cloud workloads.