Description
SAIC is seeking an AWS Cloud Computing Engineer for the Cloud One program under the Air Force Lifecycle Management Center Office for Network Integration (AFLCMC/HNI). The Cloud One Common Computing Environment is an existing global, interconnected, virtualized, hybrid, and IT infrastructure hosting mission systems, applications, services, and data that will serve the U.S. Air Force (USAF) and U.S. Army (USA). Cloud One incorporates the capabilities of commercial cloud and Managed Service Providers (MSP) residing in Cloud Service Providers (CSPs). Cloud One facilitates the USAF and USA's efforts to migrate applications to a cloud environment, allowing the closure of data centers to support the Data Center Optimization Initiative (DCOI) and allowing for increased efficiencies across the entire spectrum of the USAF and USA's IT operations. The candidate for this position will work primarily with impact level 6 (IL6) information and need to be in the local vicinity of Hanscom AFB, Charleston SC or Gunter AFB. Other locations with access to an IL6 facility could be acceptable.
Job Responsibilities:
- Architect, plan, configure, deploy, maintain, and upgrade COTS/GOTS and custom toolsets to address vulnerabilities and/or implement security controls
- Design, develop and/or implement solutions to ensure they are consistent with enterprise architecture security policies and support full spectrum military cyberspace operations
- Design, test, and implement secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions. Includes security control design and solution planning at the system, mission, and enterprise level, security-in-depth/defense-in-depth, and other related IAM/ISSO/ISSE support functions
- Research and evaluate cyber capabilities and new security tools and products against operational requirements and introduces them to the enterprise in alignment with IT security strategy, and to support the offensive and defensive capability design and troubleshoot and problem solve technical and non-technical issues. At the Leadership level this is senior technical staff dedicated to transforming customer environments into a more secure operating environment in a holistic manner
- Develop technical solutions to complex problems which require the regular use of ingenuity and creativity
- Guide the successful completion of major programs
- Work directly with the AWS IL6 Operations & Support team to maximize the security posture of Cloud One
- Perform scans using ACAS or similar tools
- Remediate finding by leveraging and enhancing Cloud One Infrastructure as Code (IAC)
- Interface with cybersecurity stakeholders during integrated product team meetings, working groups, and all other related discussions
- Support security assessments and the resolution of concerns/issues identified by assessment team(s) including security reviews, test, and exercises
- Provide automated application of DoD-hardened STIG for platforms and application configurations
- Implement and provide a method of verification of the applicable DISA STIG, SRGs, and best practices
- Configure and implement AWS cloud-native security tools and services
- Provide and implement timely remediation for audit findings
- Support POA&M reviews and recommendations
- Support Code Review Security Vulnerabilities Remediation
- Support the updates to Risk Management Framework Artifacts
Qualifications
Required Education and Experience:
- Bachelors and two (2) years or more experience; Masters and zero (0) years of experience
- Additional years of experience will be considered in lieu of degree
Required Clearance and Certification:
- Secret clearance required to start
- US citizenship required
- Security + or higher certification
Required Skills:
- Minimum Information Assurance System Architecture and Engineering (IASAE) Level II certified IAW DoD 8570.01M
- Compliant with DoD and USAF training requirements in DoDD 8570.01, DoD 8570.01-M, and AFMAN 17-1303
- Knowledge of DoD Policies and procedures including DoD 8500.01 and DoD 8510.01
- Experience with Risk Management Framework (RMF) and updating of security artifacts
- Experience with compliance verification methods including DISA STIG, SRGs, and best practices
- Experience with DevSecOps
- Knowledge of the DoD suite of security tools including ACAS, STIG Viewer, Endpoint Security, etc.
- Knowledge of cloud environments provided by AWS
- Working knowledge of Microsoft Office Suite including Microsoft Visio
Desired Skills and Certification:
- Knowledge of DESMF
- (ISC)2 CISSP, CompTIA CASP, or other cybersecurity certification preferred
- Experience with Agile, Scrum, SAFe or other modern software development methods/practices
- Experience supporting USAF or USA software development projects
SAIC accepts applications on an ongoing basis and there is no deadline.Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.