USA Jobs
Cloud Security Engineer
Dine Development Corporation is seeking a Cloud Security Engineer to support an innovative legacy application migration effort with a strong focus on AWS cloud security, Identity, Credential, and Access Management (ICAM), and Zero Trust architecture. This role is responsible for ensuring the secure design, deployment, and operation in compliance with Department of Defense (DoD) cybersecurity requirements. The successful candidate will integrate modern cloud security practices, implement Zero Trust principles, and provide technical leadership to achieve and maintain the Authority to Operate (ATO) at the Secret level. This position is contingent upon contract award. Expected award end of Sept. 2025. Responsibilities
Design and implement secure AWS cloud environments that align with DoD Cloud Computing Security Requirements Guide (SRG) and FedRAMP High baselines. Implement and manage Zero Trust principles, including micro-segmentation, identity-based access controls, continuous authentication, and least privilege access enforcement. Lead efforts to integrate ICAM solutions, ensuring interoperability with DoD enterprise identity services and compliance with ICAM strategy requirements. Apply DoD STIGs, NIST 800-53 controls, and AWS security best practices to the MOCAS cloud environment. Configure and monitor network segmentation, encryption (in transit and at rest), and key management in cloud environments. Enforce MFA, conditional access, and enterprise-wide authentication/authorization policies across applications and services. Remediate findings from automated scans, penetration tests, and compliance assessments. Embed security automation into CI/CD pipelines, ensuring infrastructure-as-code (IaC) deployments meet compliance and security requirements before release. Integrate vulnerability scanning, and AWS-native or open-source security services into pipelines and production monitoring. Ensure continuous monitoring of logs and alerts via SIEM solutions, cloud-native monitoring, and DoD-compliant auditing tools. Support Risk Management Framework (RMF) activities by preparing and maintaining security documentation, including system security plans (SSPs), control implementation statements, and security assessment reports. Provide artifacts and evidence to auditors and stakeholders to achieve and sustain ATO. Ensure security compliance for all system interconnections, including interagency service agreements (ISA). Provide advisory support to government leadership on cloud security policies, Zero Trust adoption, and modernization strategies. Collaborate with cross-functional teams (developers, architects, program managers) to ensure security is integrated across the system lifecycle. Participate in working groups, IPTs, and security design reviews, and provide technical expertise to guide decisions. Other duties as assigned.
Dine Development Corporation is seeking a Cloud Security Engineer to support an innovative legacy application migration effort with a strong focus on AWS cloud security, Identity, Credential, and Access Management (ICAM), and Zero Trust architecture. This role is responsible for ensuring the secure design, deployment, and operation in compliance with Department of Defense (DoD) cybersecurity requirements. The successful candidate will integrate modern cloud security practices, implement Zero Trust principles, and provide technical leadership to achieve and maintain the Authority to Operate (ATO) at the Secret level. This position is contingent upon contract award. Expected award end of Sept. 2025. Responsibilities
Design and implement secure AWS cloud environments that align with DoD Cloud Computing Security Requirements Guide (SRG) and FedRAMP High baselines. Implement and manage Zero Trust principles, including micro-segmentation, identity-based access controls, continuous authentication, and least privilege access enforcement. Lead efforts to integrate ICAM solutions, ensuring interoperability with DoD enterprise identity services and compliance with ICAM strategy requirements. Apply DoD STIGs, NIST 800-53 controls, and AWS security best practices to the MOCAS cloud environment. Configure and monitor network segmentation, encryption (in transit and at rest), and key management in cloud environments. Enforce MFA, conditional access, and enterprise-wide authentication/authorization policies across applications and services. Remediate findings from automated scans, penetration tests, and compliance assessments. Embed security automation into CI/CD pipelines, ensuring infrastructure-as-code (IaC) deployments meet compliance and security requirements before release. Integrate vulnerability scanning, and AWS-native or open-source security services into pipelines and production monitoring. Ensure continuous monitoring of logs and alerts via SIEM solutions, cloud-native monitoring, and DoD-compliant auditing tools. Support Risk Management Framework (RMF) activities by preparing and maintaining security documentation, including system security plans (SSPs), control implementation statements, and security assessment reports. Provide artifacts and evidence to auditors and stakeholders to achieve and sustain ATO. Ensure security compliance for all system interconnections, including interagency service agreements (ISA). Provide advisory support to government leadership on cloud security policies, Zero Trust adoption, and modernization strategies. Collaborate with cross-functional teams (developers, architects, program managers) to ensure security is integrated across the system lifecycle. Participate in working groups, IPTs, and security design reviews, and provide technical expertise to guide decisions. Other duties as assigned.