Overview
Skills
Job Details
We are seeking an experienced AWS Security Engineer is responsible for designing, implementing, and maintaining secure cloud architectures in AWS while ensuring continuous compliance with federal cybersecurity policies and frameworks. This hybrid role includes supporting cloud security engineering as well fulfilling the duties of an Information System Security Officer (ISSO) to support Authorization to Operate (ATO) activities, security documentation, and ongoing system monitoring.
Position Responsibilities:
- Design and implement security controls in AWS environments using services such as IAM, KMS, CloudTrail, Security Hub and Config.
- Lead or support security authorization efforts (FedRAMP, FISMA) by preparing and maintain System Security Plans (SSPs), POA&Ms, Contingency Plans, and other artifacts.
- Conduct vulnerability scans, security assessments, and risk analyses using tools like Nessus or AWS Security Hub.
- Serve as the security POC and collaborate with stakeholders to ensure systems remain compliant with NIST 800-53 and Agency-specific policies.
- Monitor cloud environments for anomalous activity, enforce access control policies, and support incident response efforts.
- Review and advise on DevSecOps practices, including secure CI/CD pipelines, automate compliance checks, and secure container usage.
- Coordinate with the AO, ISSM, and SOC teams to manage system risk posture and track remediation activities.
Minimum Education: Bachelor s Degree in Cybersecurity, Computer Science, or related field. Cloud-based certifications preferred.
Minimum Experience:
- 7+ years of cybersecurity experience, including at least 3+ years in cloud environments.
- Hands-on experience implementing and assessing NIST 800-53 controls in a federal cloud context.
- Experience with cloud-native logging, monitoring, and SIEM integration.
- Experience with performing ISSO responsibilities within federal government programs.
- Strong scripting experience in Python, Bash, or PowerShell.
- Strong experience with DevOps tools such as Jenkins or CodePipeline.
- Proficiency with Linux/Windows server environment and cloud networking concepts (e.g., DNS, VPC, VPN, etc.)
- Familiarity/experience with artificial intelligence (AI) cloud tooling is a huge plus (e.g., Amazon BedRock, Lex, Comprehend, etc.)
__________________________________________
No Phone Calls Please
Please send us your resume in a word file with contact details