Description
SAIC is hiring an AWS Cyber Cloud Computing Engineer for the Cloud One program under the Air Force Lifecycle Management Center Office for Network Integration (AFLCMC/HNI). The Cloud One Common Computing Environment is an existing global, interconnected, virtualized, hybrid, and IT infrastructure hosting mission systems, applications, services, and data that will serve the U.S. Air Force (USAF) and U.S. Army (USA). Cloud One incorporates the capabilities of commercial cloud and Managed Service Providers (MSP) residing in Cloud Service Providers (CSPs). Cloud One facilitates the USAF and USA’s efforts to migrate applications to a cloud environment, allowing the closure of data centers to support the Data Center Optimization Initiative (DCOI) and allowing for increased efficiencies across the entire spectrum of the USAF and USA's IT operations.
The candidate for this position will work primarily with impact level 6 (IL6) information and should be in the local vicinity of Hanscom Air Force Base, Massachusetts, Charleston SC, or Gunter Air Force Base in Montgomery, Alabama. Other locations with access to an IL6 facility may be acceptable.
Job Responsibilities:
- Architect, plan, configure, deploy, maintain, and upgrade COTS/GOTS and custom toolsets to address vulnerabilities and/or implement security controls
- Apply a combination of expert engineering knowledge of enterprise IT and security solutions to design, develop and/or implement solutions to ensure they are consistent with enterprise architecture security policies and support full spectrum military cyberspace operations
- Design, test, and implement secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions. This includes security control design and solution planning at the system, mission, and enterprise level, security-in-depth/defense-in-depth, and other related IAM/ISSO/ISSE support functions
- Handle security issues including architectures, firewalls, electronic data traffic, and network access
- Research and evaluate cyber capabilities and new security tools and products against operational requirements and introduce them to the enterprise in alignment with IT security strategy
- Transform customer environments into a more secure operating environment in a holistic manner
- Develop technical solutions to complex problems which require the regular use of ingenuity and creativity
- Guide the successful completion of major programs
- Work directly with the AWS IL6 Operations & Support team to maximize the security posture of Cloud One
- Specific duties include:
- Perform scans using ACAS or similar tools
- Remediate finding by leveraging and enhancing Cloud One Infrastructure as Code (IAC)
- Interface with cybersecurity stakeholders during integrated product team meetings, working groups, and all other related discussions
- Support security assessments and the resolution of concerns/issues identified by assessment team(s) including security reviews, test, and exercises
- Provide automated application of DoD-hardened STIG for platforms and application configurations
- Implement and provide a method of verification of the applicable DISA STIG, SRGs, and best practices
- Ability to configure and implement AWS cloud-native security tools and services
- Ability to provide and implement timely remediation for audit findings
- Ability to support POA&M reviews and recommendations
- Ability to support Code Review Security Vulnerabilities Remediation
- Ability to support the updates to Risk Management Framework Artifacts
Qualifications
Required Education and Experience:
- Bachelors and five (5) or more years experience; Masters and three (3) or more years experience
- Additional years of experience may be substituted in lieu of degree
Required Clearance and Certifications:
- Secret Clearance
- US citizenship
- Security + certification
Required Qualifications:
- Knowledge of DoD Policies and procedures including DoD 8500.01 and DoD 8510.01
- Compliant with DoD and USAF training requirements in DoDD 8140 and AFMAN 17-1303
- Experience with Risk Management Framework (RMF) and updating of security artifacts
- Experience with compliance verification methods including DISA STIG, SRGs, and best practices
- Experience with DevSecOps
- Knowledge of the DoD suite of security tools including ACAS, STIG Viewer, Endpoint Security, etc.
- Knowledge of cloud environments provided by AWS
- Working knowledge of Microsoft Office Suite including Microsoft Visio
- Hands on experience deploying security tools in an AWS cloud environment
- Experience with Ansible
- Experience with Linux
Desired Qualifications:
- Knowledge of DESMF
- (ISC)2 CISSP, CompTIA CASP, or other cybersecurity certification preferred
- Experience with Agile, Scrum, SAFe or other modern software development methods/practices
- Experience supporting USAF or USA software development projects
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.