Senior Cloud Engineer

The Leidos Digital Modernization Sector is seeking a highly capable Senior Cloud Engineer to spearhead cloud initiatives for the DHS CISA in Arlington, VA. In this hands-on role, you'll architect and develop scalable cloud-native solutions using AWS, Azure, and Python, while ensuring best practices across architecture, development, deployment, and security. The Security Cloud Engineer will support the design and development of cybersecurity tools and technology along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide systems and networks.

Primary Responsibilities:

• Manage multiple assignments, changing priorities, and work independently with little oversight.
• Deploy and manage applications on cloud platforms such as AWS and Azure.
• Tackles large security projects, both of a technical and compliance nature. The senior cloud engineer is expected to tackle difficult technical issues and changes with minimal oversight.
• Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required.
• Documentation, Visio Diagrams and reporting along with presentation, teamwork and DHS wide collaboration are among the expected duties and mission of the task order.
• Hardware and software installations, upgrades, maintenance, security analysis and network performance and tuning of Windows and Linux servers in a virtual infrastructure.
• Define system security & design requirements to meet FISMA and FedRAMP compliance standards.
• Communicate with other technical leads, IT groups, and customer reps so they understand all aspects of proposed changes/solutions.
• Provide follow-up reports (technical findings, feedback, resolution steps taken) for Root Cause analysis, engineering technical assessment and process improvement initiatives.
• Superior attention to detail with excellent written and verbal communication, problem solving, researching and follow-up skills.
• Design, implement, and maintain CI/CD pipelines for secure, automated software delivery.
• Develop infrastructure as code (IaC) using tools such as Terraform, Ansible, or CloudFormation.
• Implement automated security tools for vulnerability scanning, static/dynamic application security testing (SAST/DAST), and container security.
• Configure and optimize container orchestration platforms (e.g., Kubernetes, Docker).
• Mentor junior team members and contribute to continuous improvement of DevSecOps practices.

Basic Qualifications:

• BS degree in Science, Technology, Engineering or related field and 10+ years of prior relevant experience with a focus on cybersecurity OR Masters with 8+ years of prior relevant experience; additional years of experience will be accepted in lieu of a degree.
• Experience installing, configuring, securing, and troubleshooting Microsoft Windows Server and Red Hat Enterprise Linux.
• Extensive automation experience with PowerShell and Shell Scripting for automating repeatable tasks and installations.
• Experience managing Active Directory (AD), Azure Active Directory, AD FS, single sign-on using SAML and Group Policy management.
• Perform analysis of security posture by reviewing vulnerability and compliance scans and making recommendations for remediations and managing POA&Ms.
• Excellent problem solving, research, and follow-up skills.
• Minimum 5+ years of Administration experience with cloud-based applications (MS O365, SharePoint, Azure AD, AWS).
• Hands-on experience with containerization and orchestration (e.g., Docker, Kubernetes).
• Solid understanding of networking, Linux/Unix systems, and version control systems (e.g., Git).
• Experience managing Azure Firewalls, AWS Network Firewall, AWS Network ACLs, AWS security groups, Azure network security groups, and related resources.
• Solid understanding of developing and leveraging CI/CD pipelines (Continuous Integration/Continuous Deployment).
• Candidate must, at a minimum, meet one of these certifications: CISSP, CCSP, MCSE, AWS Certified DevOps Engineer, Certified AWS SysAdmin, AWS Certified Advanced Networking, Azure Solutions Architect, Expert Azure Developer Associate.
• Clearance: This position requires candidates to obtain a Public Trust security clearance.

Preferred Qualifications:

• Experience with Wiz, Axonius, Crowd Strike, Nucleus, and Network/Endpoint security tools.
• Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application sourcetypes is a plus.
• Experience working in an Agile environment and familiarity with Agile project management practices is a plus.

We're not looking for perfectly polished resumes or perfect fits. We're looking for people who break limits, ask hard questions, and don't wait to be told what's next. At Leidos, we're not following the roadmap - we're redrawing it.

Original Posting:
November 13, 2025

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:
Pay Range $104,650.00 - $189,175.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.