Description
Description
SAIC is seeking an experienced and driven AWS Cybersecurity Cloud Computing Engineer to support the Cloud One Program under the Air Force Lifecycle Management Center Office for Network Integration (AFLCMC/HNI). The Cloud One Common Computing Environment is an existing global, interconnected, virtualized, hybrid, and IT infrastructure hosting mission systems, applications, services, and data that will serve the U.S. Air Force (USAF) and U.S. Army (USA). Cloud One incorporates the capabilities of commercial cloud and Managed Service Providers (MSP) residing in Cloud Service Providers (CSPs). Cloud One facilitates the USAF and USA's efforts to migrate applications to a cloud environment, allowing the closure of data centers to support the Data Center optimization Initiative (DCOI) and allowing for increased efficiencies across the entire spectrum of the USAF and USA's IT operations. The candidate will support operations and sustainment solutions aligned with enterprise security policies and mission objectives for the AWS cloud environment.
This position is 100% remote.
Job Responsibilities:
- Apply and validate DISA STIGs, SRGs, and CIS Benchmarks across AWS workloads to ensure compliance with DoD cybersecurity standards.
- Review and remediate vulnerabilities detected via ACAS (Nessus) scans, Amazon Inspector, and other DoD-approved scanning tools.
- Monitor AWS-native security tools like GuardDuty, Security Hub, CloudTrail, and AWS Config for alerts, misconfigurations, or unauthorized activity.
- Coordinate patching schedules and validate patch compliance across EC2 instances, container workloads, and managed AWS services.
- Support ATO and security assessments, interfacing with ISSOs/ISSEs to prepare systems for audit or continuous monitoring reviews.
- Automate compliance and security checks using Lambda, CloudFormation, or Terraform, ensuring repeatable and scalable security controls.
- Collaborate with engineering and DevOps teams to review architecture diagrams and ensure secure designs and DevSecOps integrations.
- Participate in daily stand-ups or working groups, providing updates on security posture, ongoing findings, or new risks.
- Research new AWS security services and DoD directives, evaluating how tools like AWS Inspector, KMS, or IAM Identity Center can enhance enterprise security and policy alignment.
- Architect, configure, deploy, and maintain both COTS and GOTS solutions to mitigate vulnerabilities and implement robust security controls.
- Continuously research and evaluate emerging cyber capabilities to enhance enterprise security posture and support both offensive and defensive cyber operations.
Qualifications
Required Clearance:
- Interim Secret clearance required to start; Ability to obtain a Secret clearance required to maintain employment.
- US citizenship required
Required Certifications:
- Security+ Certification required
Required Education/Experience:
- Bachelor's and five (5) years of experience; Masters and three (3) years of experience.
- Additional years of experience accepted in lieu of degree.
Required Qualifications:
- Strong understanding and practical application of DISA STIGs, SRGs, and CIS Benchmarks in cloud environments
- Working Knowledge of USAF D0D cybersecurity policies (DoD 8500.01, DoD 8510.10) in a AWS cloud environment
- Strong understanding and practical application of DISA STIGs, SRGs, and CIS Benchmarks in cloud environments
- Experience supporting USAF DevSecOps pipelines with security controls embedded throughout the SDLC
- Experience using any of the following code in a AWS cloud environment: IAC, Yaml/Json, Powershell, Bash, AWS CLI, Ansible, Terraform
- Experience in any of the following environments: GitLab, Evaluate STIG, Artifactory, Jenkins, ACAS, Trend Micro
- Experience with USAF DevSecOps, container security or zero trust architecture
- Experience with eMASS, HBSS, and SecureView environments
- Self-starter who is highly organized and excels in both independent and team environments.
Desired Qualifications:
- Preferred Experience in AWS Technology: AWS Security Hub, Amazon GuardDuty, AWS Config, Amazon Inspector, AWS IAM (including SCP's and fine-grained permissions), AWS CloudTrail, AWS Secrets Manager/KMS, Secrets Manager, CloudTrail, CloudWatch, S3 Permissions, Policy as Code
- AZ-305, AZ-400, other Microsoft Azure certifications.
- SAFe DevOps certification.
- Experience supporting software migration efforts.
- Experience working DoD/government contracts highly desirable.
- Experience supporting Windows, Redhat, Amazon Linux, GPO/Domain, OS Level Tools and Features (Federation, DC, etc) in a AWS cloud environment
- Experience supporting Agile/Scrum environment familiarity
Desired Certifications:
- AWS Security Specialty certification
- IASAE Level II certification in compliance with DoD 8570.01M / DoD 8140 (e.g., CASP+, CISSP-ISSEP).
Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
Apply on company website
Find Connections via Linkedin
