SITEC - Dev Ops Cloud Systems Engineer - MacDill AFB

Peraton•Tampa, FL

1d•Onsite

About The Position

Peraton requires Cloud Systems Engineers to support the Special Operation Command Information Technology Enterprise Contract (SITEC) – 3 EOM. This position is located at MacDill AFB in Florida. The purpose of the Special Operations Forces Information Technology Enterprise Contract (SITEC) 3 Enterprise Operations and Maintenance (EOM) Task Order (TO) is to provide USSOCOM, its Component Commands, its Theater Special Operations Commands (TSOCs), and its deployed forces with Operations and Maintenance (O&M) services to maintain Network Operations (NetOps); maintain systems and network infrastructure; provide end user and common device support; provide configuration, change, license, and asset management; conduct training, and perform Install, Move, Add, Change (IMACs) services. The responsibilities and tasks associated with each requirement play a pivotal role to USSOCOM, the CIO/J6 organization, and ultimately the end-user who operate around the globe 24x7x365. The SOF Integration Facility (SIF) Team is seeking an experienced and innovative Cloud Systems Engineer to support our USSOCOM’s network enterprise modernization efforts. The ideal candidate will manage, design, and optimize cloud solutions to ensure the availability, security, and performance of mission-critical applications. This role requires a strong technical background, problem-solving skills, and the ability to work independently as well as collaboratively with cross-functional teams. The ideal candidate is detail-oriented, customer-service driven, and eager to grow in a fast-paced IT operations environment. Designs, engineers, secures, and sustains resilient Microsoft Azure and AWS Government platforms for critical defense missions, implementing DevSecOps within highly regulated Impact Level (IL4/IL5/IL6) enclaves and managing hybrid Linux/Windows workloads. Focus areas include DISA STIG‑aligned Infrastructure‑as‑Code, Zero Trust, automated compliance controls, and secure connectivity to DoD networks.

Requirements

Min 12 years with HS Diploma, 10 years with AS/AA degree, 8 years with BS/BA, or 6 years with MS/MA, 3 years with PhD
DoD 8570 IAT II Certification
DoD TS/SCI clearance
Experience with Python/PowerShell/Bash; IaC (Bicep/Terraform/ARM); secure network design, encryption, access controls, data protection; containers/orchestration (Docker/Kubernetes/AKS)
Minimum 3 years directly in Microsoft Azure or AWS Government with deep knowledge of IL distinctions

Nice To Haves

Azure Solutions Architect Expert (AZ‑305)
Azure Administrator Associate
Azure Security Engineer Associate (AZ‑500)
AWS Certified Solutions Architect Professional
AWS Certified Solutions Architect Associate
CCSP
Cloud+
GIAC GCLD/GCSA
Mobile Device Management experience (MaaS360, Intune)

Responsibilities

Build and maintain cloud‑based platforms/services; support hybrid multi‑cloud operations with strict IAM, encryption, governance, and monitoring/reporting integration.
Implement solutions with virtualization/containerization (VMware, Docker/Kubernetes/AKS).
Harden AKS per DISA Container Hardening Guides and apply STIG baselines across Azure resources.
Author and enforce Bicep/Terraform/ARM templates embedding DISA STIG controls “by default.”
Develop automated provisioning using IaC languages (e.g., HCL/YAML) and platform APIs/services; script in Python/PowerShell/Bash to automate workflows.
Build CI/CD pipelines in Azure or AWS DevOps/GitHub Actions with integrated security scanning (SAST/DAST) to enable Continuous ATO (cATO).
Adhere to agile software development and IT service management practices.
Implement Azure Policy/Blueprints aligned to DoD Cloud Computing SRG and NIST 800‑53 control families; maintain automated patching and compliance for RHEL/Ubuntu in classified environments.
Engineer Zero Trust security in accordance with NIST SP 800‑207 (access control, encryption, threat intelligence, vulnerability management, cloud security models/controls).
Design identity/access using Microsoft Entra ID (Azure AD) and Conditional Access to enforce DoD Zero Trust principles.
Establish secure connectivity between on‑prem DoD networks and Azure/AWS Gov via ExpressRoute and Private Link; integrate interconnectivity with legacy systems.
Represent USSOCOM in vendor engagements; communicate technical information clearly to enterprise, component, and TSOC stakeholders.
Support NetOps, systems/network sustainment, end‑user/common device services, configuration/change/license/asset management, training, and IMAC activities per SITEC‑3 EOM.