Cloud Security Engineer / DevSecOps III

About The Position

Requirements

• U.S. Citizenship – MANDATORY (no exceptions, federal contract requirement)
• Public Trust Clearance with Suitability – REQUIRED (must be obtainable/active)
• Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or related field – REQUIRED
• Minimum 5 years of IT experience – REQUIRED
• At least ONE active certification from: CISA, CRISC, CISM, CGEIT, CISSP, or CAP – REQUIRED
• AWS Cloud Security: VPC, Security Groups, IAM, KMS, S3/RDS Encryption, CloudFormation, CloudFront, Lambda, API Gateway
• Security Tools: Splunk, Nessus, Tenable, Palo Alto, Imperva, Fortinet
• DevSecOps: CI/CD Pipeline Security Integration, SAST/DAST Scanning
• Containerization: Docker
• Compliance: FISMA, NIST 800-53, Federal Cloud Security Standards

Nice To Haves

• Terraform experience for infrastructure as code
• Kubernetes / Amazon EKS experience
• FedRAMP compliance experience
• Experience with federal government cloud security environments

Responsibilities

• Serve as the hands-on AWS security engineer for the BOP cloud environment
• Integrate security into CI/CD pipelines and automate security testing
• Implement and manage AWS security services (VPC, Security Groups, IAM, KMS, S3/RDS encryption)
• Deploy and manage infrastructure as code using AWS CloudFormation
• Configure and manage security monitoring tools (Splunk, Nessus/Tenable, Palo Alto, Imperva, Fortinet)
• Implement SAST/DAST security scanning in development workflows
• Manage containerized environments using Docker
• Support CloudFront, Lambda, and API Gateway security configurations
• Ensure compliance with FISMA, NIST 800-53, and federal cloud security requirements
• Collaborate with development and operations teams to embed security throughout the SDLC