Cloud Architect

Job Description

The contractor will be the relied upon and go-to person for Cloud Engineering solutions. The Cloud Engineer/Architect will provide professional and technical design, implementation and operational services to assist customers to deploy solutions using cloud computing services. The contractor will be responsible for technical- and security-aspects of system design and subsequent implementation. The contractor will configure tools to meet the business, policy and security risk tolerance of demanding customers. The contractor will engage with business and security analysts to document how required security controls are met through tools and associated implementation. The contractor will also operate tools until transitioned to operations.

The primary responsibilities and activities to be accomplished include:

• Provide systems maintenance and administration services for CACTUS applications, infrastructure, and environments
• Provide Help Desk support for application end-users; create and configure user accounts
• Develop and refine technical and end-user documentation as needed
• Determine customer business requirements and applicable regulations, security policy and standards that provide foundation for design.
• Engineer and design solutions on clouds such as MS Azure, Amazon Web Services (AWS), Google Apps, and ServiceNow that manage risk and meet relevant security regulations, controls and policy.
• Determine how to leverage services from cloud providers and identify gaps that must be met through other tools, software, or 3rd party services.
• Implement tools/services ranging from OS hardening, ACL/NACL flow control, web application firewalls, SIEM (e.g, Splunk), intrusion detection, and vulnerability management.
• Implement the architecture design: installing, configuring and testing cloud services and associated 3rd party services and software.
• Participate in assessment of system security controls to validate control implementation and identify weaknesses.
• Use tools such as discovery, vulnerability assessment and policy audit tools to evaluate systems for vulnerabilities. Review results and implement fixes or risk mitigation.
• Identify new and innovative ways to use existing tool sets to automate security management, monitoring and related processes to reduce risk and costs.
• Other duties (migration of application to other environments, participation in daily stands ups, etc.) as assigned.

Qualifications

• At least 8 (eight)years of professional experience in IT/network engineering, security engineering, system administration or security operations.

• Active DOD/DSS SECRET security clearance or higher
• At least one of the following certifications: CISSP, CSSP, CCSK, GIAC, CEH
• Strong analytical skills with solid verbal and written communication skills
• Shows initiative, presents ideas to overcome challenges, self-starter
• Positive attitude, willingness to learn and apply, team player
• Knowledge of Terraform or similar platform required.

• Experience with one or more of: MS Azure, AWS, Google Cloud, or ServiceNow
• Experience deploying and operating tools such as: Tenable Nessus, Splunk, OSSEC, AWS services, Barracuda NextGen firewalls.
• Master’s degree in information systems, cybersecurity or related fields
• Experience with FISMA, FedRAMP, and NIST SP 800-53

Additional Information

• Medical Insurance
• Dental Insurance
• Vision Insurance
• Life Insurance
• Short Term & Long-Term Disability
• 401k Retirement Savings Plan with Company Match
• Paid Holidays
• Paid Time Off (PTO)
• Tuition and Professional Development Assistance
• Parking/TravelReimbursement (metropolitan areas)

It is the policy of A3T to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations.