Information System Security Engineer

About The Position

Requirements

• Provide cybersecurity leadership and governance across DoD IL5 and IL6 cloud platforms.
• Ensure secure design, continuous monitoring, and compliance across multiple cloud brokers.
• Oversee RMF lifecycle execution, ATO sustainment, and security engineering alignment for cloud based development and production environments.
• Partner closely with engineering, operations, and mission stakeholders to maintain a resilient, audit‑ready security posture.
• Contribute to Naval Operational Architecture (NOA).
• Work alongside engineers and operators to deliver resilient, forward-leaning solutions in support of national defense.
• Manage ATO packages, ensuring timely renewals, POA&M tracking, and alignment with DoD cybersecurity requirements.
• Oversee cloud security posture across AWS GovCloud (primary) and Azure (future), ensuring compliance with DoD and organizational standards.
• Coordinate with cloud brokers to validate boundary protections, shared responsibility models, and service configurations.
• Provide ISSM oversight for engineering teams, including secure architecture reviews and change‑control participation.
• Support containerized architectures including EKS, Kubernetes, and microservices security controls.
• Guide implementation of IaC security for Terraform/CloudFormation‑based deployments.
• Ensure compliance of Red Hat Linux systems, including STIG application and patch governance.
• Advise on network security fundamentals including VPC design, routing, segmentation, and boundary defense.

Responsibilities

• Lead RMF lifecycle execution for IL5/IL6 cloud systems, including control inheritance, evidence generation, and continuous monitoring.
• Manage ATO packages, ensuring timely renewals, POA&M tracking, and alignment with DoD cybersecurity requirements.
• Oversee cloud security posture across AWS GovCloud (primary) and Azure (future), ensuring compliance with DoD and organizational standards.
• Coordinate with cloud brokers to validate boundary protections, shared responsibility models, and service configurations.
• Provide ISSM oversight for engineering teams, including secure architecture reviews and change‑control participation.
• Support containerized architectures including EKS, Kubernetes, and microservices security controls.
• Guide implementation of IaC security for Terraform/CloudFormation‑based deployments.
• Ensure compliance of Red Hat Linux systems, including STIG application and patch governance.
• Advise on network security fundamentals including VPC design, routing, segmentation, and boundary defense.