Apply on Employer Site

Leidos · 1 day ago

Senior Cloud Engineer

United States

Full-time

Remote

Senior Level, Lead/Staff

$108K/yr - $195K/yr

8+ years exp

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. They are seeking a Senior Cloud Engineer to spearhead cloud initiatives for the DHS CISA, focusing on architecting and developing scalable cloud-native solutions while ensuring best practices in security and compliance.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware

No H1B

U.S. Citizen Only

Responsibilities

Manage multiple assignments, changing priorities, and work independently with little oversight

Deploy and manage applications on cloud platforms such as AWS and Azure

Tackles large security projects, both of a technical and compliance nature. The senior cloud engineer is expected to tackle difficult technical issues and changes with minimal oversight

Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required

Documentation, Visio Diagrams and reporting along with presentation, teamwork and DHS wide collaboration are among the expected duties and mission of the task order

Hardware and software installations, upgrades, maintenance, security analysis and network performance and tuning of Windows and Linux servers in a virtual infrastructure

Define system security & design requirements to meet FISMA and FedRAMP compliance standards

Communicate with other technical leads, IT groups, and customer reps so they understand all aspects of proposed changes/solutions

Provide follow-up reports (technical findings, feedback, resolution steps taken) for Root Cause analysis, engineering technical assessment and process improvement initiatives

Superior attention to detail with excellent written and verbal communication, problem solving, researching and follow-up skills

Design, implement, and maintain CI/CD pipelines for secure, automated software delivery

Develop infrastructure as code (IaC) using tools such as Terraform, Ansible, or CloudFormation

Implement automated security tools for vulnerability scanning, static/dynamic application security testing (SAST/DAST), and container security

Configure and optimize container orchestration platforms (e.g., Kubernetes, Docker)

Mentor junior team members and contribute to continuous improvement of DevSecOps practices

Qualification

AWSAzurePythonCI/CD pipelinesInfrastructure as CodeTerraformAnsibleCloudFormationDockerKubernetesPowerShellShell ScriptingActive DirectoryWindows ServerRed Hat Enterprise LinuxCISSPCCSPMCSEAWS Certified DevOps EngineerAzure Solutions ArchitectProblem SolvingCommunicationTeamworkAttention to Detail

Required

BS degree in Science, Technology, Engineering or related field and 10+ years of prior relevant experience with a focus on cybersecurity OR Masters with 8+ years of prior relevant experience; additional years of experience will be accepted in lieu of a degree

Experience installing, configuring, securing, and troubleshooting Microsoft Windows Server and Red Hat Enterprise Linux

Extensive automation experience with PowerShell and Shell Scripting for automating repeatable tasks and installations

Experience managing Active Directory (AD), Azure Active Directory, AD FS, single sign-on using SAML and Group Policy management

Perform analysis of security posture by reviewing vulnerability and compliance scans and making recommendations for remediations and managing POA&Ms

Excellent problem solving, research, and follow-up skills

Minimum 5+ years of Administration experience with cloud-based applications (MS O365, SharePoint, Azure AD, AWS)

Hands-on experience with containerization and orchestration (e.g., Docker, Kubernetes)

Solid understanding of networking, Linux/Unix systems, and version control systems (e.g., Git)

Experience managing Azure Firewalls, AWS Network Firewall, AWS Network ACLs, AWS security groups, Azure network security groups, and related resources

Solid understanding of developing and leveraging CI/CD pipelines (Continuous Integration/Continuous Deployment)

Candidate must, at a minimum, meet one of these certifications: CISSP, CCSP, MCSE, AWS Certified DevOps Engineer, Certified AWS SysAdmin, AWS Certified Advanced Networking, Azure Solutions Architect, Expert Azure Developer Associate

Clearance: This position requires candidates to obtain a Public Trust security clearance

Preferred

Experience with Wiz, Axonius, Crowd Strike, Nucleus, and Network/Endpoint security tools

Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application sourcetypes is a plus

Experience working in an Agile environment and familiarity with Agile project management practices is a plus