Cloud Security Engineer
Information Technology --> Cloud
Alexandria, VA • ID: 500-383 • Full-Time/Regular
As a Cloud Security Engineer joining our team at DMDC, you will play a pivotal role in modernizing our data management systems, ensuring they are secure, efficient, and scalable. Your expertise in cloud technologies will directly contribute to enhancing the performance and effectiveness of our data services, ultimately improving the support we provide to military personnel and their families. Join us and be at the forefront of transforming how we manage and utilize data to serve the Department of Defense's critical missions.
Responsibilities
Collaborate with other engineers, product managers and customers to shape, build and improve features and engineering tools within the enterprise Create reusable components to build consistent and high-quality user experiences Evaluate and implement third-party cloud security and compliance tools Provide security compliant architecture, solutions and engineering support for cloud migrations Manage, implement and report on cloud container privilege accounts Design, build and maintain UI functionality from sophisticated dashboards to context-aware user flows Collaborate with leadership to develop security metrics based on enterprise situational awareness and compliance with NIST 800-53 controls Create and maintain SOPs, TTPs, topology diagrams, information flow diagrams, and SPARXs documentation Develop SOP for integration of new applications into DHRA containerized environments Advise customers on how to best leverage cloud container solutions, such as StackRox to secure their Kubernetes environments Manage container segmentation polices, and identify policy violations. Validate and review docker logs Ensure that malware and threat prevention functionality is enabled on container hosts, environment, and segment. Maintain up to date vulnerability scans on container environment Leverage expertise in Kubernetes container security, specifically StackRox, to deliver risk analysis of container environments, deliver visibility and runtime alerts, and provide recommendations to proactively improve cybersecurity by hardening the environment Directly perform architecture, engineering and analyst duties (familiarity with CI/CD pipeline, infrastructure as code, and automation)
Requirements
Bachelor’s degree and 10+ years of Information Technology or Cybersecurity related experience in this posting’s technologies DoD Top Secret clearance: Minimum vetting Tier 5(T5)-Single Scope Background Investigation (SSBI) Specialized knowledge of cloud container security (Kubernetes StackRox), orchestration to develop security solutions, and Oracle OCI in multi-cloud environments Active DoD 8570 IAT Level 3 certification (at least one of the following certifications in good standing: CISSP, CASP+CE, CCNP Security, CISA, GCED, GCIH, CCSP) Ability to communicate effectively with government and contract leadership, while conveying highly technical concepts to both technical and nontechnical stakeholders Significant experience in cloud container security, specifically Oracle environments implementing StackRox/Kubernetes in enterprise environments Familiar with cloud migration implementations, security and strategy
All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.
