General Dynamics Information Technology
Security Infrastructure Support AWS Infrastructure and Cloud Security Support SM
General Dynamics Information Technology, Bethesda, Maryland, us, 20811
GDIT is seeking a Security Infrastructure Support AWS Infrastructure and Cloud Security Support SME to join our enterprise cyber program and support a federal customer in the DC metropolitan area. This hybrid position requires periodic onsite support and customer meetings.
The successful candidate shall be capable of providing technical cloud security subject matter expertise to meet current and future security design and architecture requirements for IaaS, PaaS, and SaaS implementations. The candidate shall have experience with designing and implementing security measure to protect data as it moves from on-premises data center servers to cloud storage systems. The candidate shall have experience with network security and security compliance.
How You Will Make an Impact
Recommend cloud security controls, cloud-based processes and tools, and cloud security task automation
Act as subject matter expert regarding cloud security and associated tools
Analyze existing customer capabilities and design cloud-based solutions utilizing industry and DoD best cybersecurity practices
Translate high level product development strategies into cybersecurity specifications and work with other engineering disciplines to develop lower level detailed cybersecurity requirements
Ensure designed and standardized cloud-based systems architectures across multiple networks are compliant with applicable cybersecurity regulatory requirements and best practices
Architect, deploy, and manage AWS services, including EC2, S3, VPC, IAM, CloudTrail, GuardDuty, and Security Hub.
Integrate AWS GovCloud or FedRAMP environments with on-premises security tools such as Splunk, Cribl, and Archer.
Develop and implement CI/CD pipelines, using Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and Ansible.
Implement DevSecOps practices, integrating security scanning into build and release pipelines.
Optimize AWS services cost, including budgeting, billing analysis, reserved instances, and rightsizing strategies.
Manage security operations in a cloud context, including continuous monitoring, log ingestion pipelines, and compliance reporting.
Ensure adherence to federal compliance frameworks such as FISMA, NIST 800-53, and M-21-31.
Lead and communicate effectively with Federal COR and stakeholders.
Coordinate activities across multiple teams, including Infrastructure, Security, DevOps, and Application teams.
Develop professional technical, logical, architecture designs, diagrams, SOPs, and compliance documentation.
What You'll Need to Succeed
8+ years of experience in IT infrastructure and security operations.
5+ years of direct experience architecting, deploying, and managing AWS services.
3+ years specific experience hands-on cloud security
Demonstrated expertise in hybrid cloud/on-premises architecture and integration of AWS GovCloud or FedRAMP environments with on-premises security tools.
Experience with CI/CD pipelines and Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, or Ansible.
Proven track record implementing DevSecOps practices.
Experience in cost optimization of AWS services.
Hands-on experience managing security operations in a cloud context.
Strong understanding of federal compliance frameworks.
Strong understanding of, and experience with, RMF
Extensive experience with cloud platforms such as AWS, Azure, OpenStack and Google cloud
Familiarity with IPS/IDS, TCP/IP networking and security monitoring
Excellent technical documentation and reporting skills
Effective written and oral communication skills
Able to work individually and as part of a team
Strong leadership, communication, and ability to report to Federal COR and stakeholders.
Ability to coordinate across multiple teams.
Demonstrated expertise in developing technical designs, diagrams, SOPs, and compliance documentation.
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
AWS Certified Solutions Architect (Professional preferred).
At least one security-related certification (CISSP, CISM, AWS Security Specialty).
Prior experience in the health domain.
Must have experience supporting a Government agency.
Must be a US Citizen.
DESIRED EXPERIENCE:
Advanced degree in Computer Science, Information Technology, Cybersecurity, or related field.
Preferred certifications for one or more of the following cloud platforms: Microsoft Azure Security Engineer, Google Cloud Security Engineer, Amazon Web Services (AWS) Certified Security, and Oracle Cloud Infrastructure Security Expert.
Experience with other cloud service providers (CSPs).
Additional relevant security certifications.
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays
#J-18808-Ljbffr
The successful candidate shall be capable of providing technical cloud security subject matter expertise to meet current and future security design and architecture requirements for IaaS, PaaS, and SaaS implementations. The candidate shall have experience with designing and implementing security measure to protect data as it moves from on-premises data center servers to cloud storage systems. The candidate shall have experience with network security and security compliance.
How You Will Make an Impact
Recommend cloud security controls, cloud-based processes and tools, and cloud security task automation
Act as subject matter expert regarding cloud security and associated tools
Analyze existing customer capabilities and design cloud-based solutions utilizing industry and DoD best cybersecurity practices
Translate high level product development strategies into cybersecurity specifications and work with other engineering disciplines to develop lower level detailed cybersecurity requirements
Ensure designed and standardized cloud-based systems architectures across multiple networks are compliant with applicable cybersecurity regulatory requirements and best practices
Architect, deploy, and manage AWS services, including EC2, S3, VPC, IAM, CloudTrail, GuardDuty, and Security Hub.
Integrate AWS GovCloud or FedRAMP environments with on-premises security tools such as Splunk, Cribl, and Archer.
Develop and implement CI/CD pipelines, using Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and Ansible.
Implement DevSecOps practices, integrating security scanning into build and release pipelines.
Optimize AWS services cost, including budgeting, billing analysis, reserved instances, and rightsizing strategies.
Manage security operations in a cloud context, including continuous monitoring, log ingestion pipelines, and compliance reporting.
Ensure adherence to federal compliance frameworks such as FISMA, NIST 800-53, and M-21-31.
Lead and communicate effectively with Federal COR and stakeholders.
Coordinate activities across multiple teams, including Infrastructure, Security, DevOps, and Application teams.
Develop professional technical, logical, architecture designs, diagrams, SOPs, and compliance documentation.
What You'll Need to Succeed
8+ years of experience in IT infrastructure and security operations.
5+ years of direct experience architecting, deploying, and managing AWS services.
3+ years specific experience hands-on cloud security
Demonstrated expertise in hybrid cloud/on-premises architecture and integration of AWS GovCloud or FedRAMP environments with on-premises security tools.
Experience with CI/CD pipelines and Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, or Ansible.
Proven track record implementing DevSecOps practices.
Experience in cost optimization of AWS services.
Hands-on experience managing security operations in a cloud context.
Strong understanding of federal compliance frameworks.
Strong understanding of, and experience with, RMF
Extensive experience with cloud platforms such as AWS, Azure, OpenStack and Google cloud
Familiarity with IPS/IDS, TCP/IP networking and security monitoring
Excellent technical documentation and reporting skills
Effective written and oral communication skills
Able to work individually and as part of a team
Strong leadership, communication, and ability to report to Federal COR and stakeholders.
Ability to coordinate across multiple teams.
Demonstrated expertise in developing technical designs, diagrams, SOPs, and compliance documentation.
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
AWS Certified Solutions Architect (Professional preferred).
At least one security-related certification (CISSP, CISM, AWS Security Specialty).
Prior experience in the health domain.
Must have experience supporting a Government agency.
Must be a US Citizen.
DESIRED EXPERIENCE:
Advanced degree in Computer Science, Information Technology, Cybersecurity, or related field.
Preferred certifications for one or more of the following cloud platforms: Microsoft Azure Security Engineer, Google Cloud Security Engineer, Amazon Web Services (AWS) Certified Security, and Oracle Cloud Infrastructure Security Expert.
Experience with other cloud service providers (CSPs).
Additional relevant security certifications.
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays
#J-18808-Ljbffr