Senior Cloud Engineer

Description

The Leidos Digital Modernization Sector is seeking a highly capable Senior Cloud Engineer to spearhead cloud initiatives for the DHS CISA in Arlington, VA. In this hands-on role, you'll architect and develop scalable cloud-native solutions using AWS, Azure, and Python, while ensuring best practices across architecture, development, deployment, and security. The Security Cloud Engineer will support the design and development of cybersecurity tools and technology along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide systems and networks.

Primary Responsibilities:

• Manage multiple assignments, changing priorities, and work independently with little oversight.

• Deploy and manage applications on cloud platforms such as AWS and Azure.

• Tackles large security projects, both of a technical and compliance nature. The senior cloud engineer is expected to tackle difficult technical issues and changes with minimal oversight.

• Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required.

• Documentation, Visio Diagrams and reporting along with presentation, teamwork and DHS wide collaboration are among the expected duties and mission of the task order.

• Hardware and software installations, upgrades, maintenance, security analysis and network performance and tuning of Windows and Linux servers in a virtual infrastructure.

• Define system security & design requirements to meet FISMA and FedRAMP compliance standards.

• Communicate with other technical leads, IT groups, and customer reps so they understand all aspects of proposed changes/solutions.

• Provide follow-up reports (technical findings, feedback, resolution steps taken) for Root Cause analysis, engineering technical assessment and process improvement initiatives.

• Superior attention to detail with excellent written and verbal communication, problem solving, researching and follow-up skills.

• Design, implement, and maintain CI/CD pipelines for secure, automated software delivery.

• Develop infrastructure as code (IaC) using tools such as Terraform, Ansible, or CloudFormation.

• Implement automated security tools for vulnerability scanning, static/dynamic application security testing (SAST/DAST), and container security.

• Configure and optimize container orchestration platforms (e.g., Kubernetes, Docker).

• Mentor junior team members and contribute to continuous improvement of DevSecOps practices.

Basic Qualifications:

• BS degree in Science, Technology, Engineering or related field and 10+ years of prior relevant experience with a focus on cybersecurity OR Masters with 8+ years of prior relevant experience; additional years of experience will be accepted in lieu of a degree.

• Experience installing, configuring, securing, and troubleshooting Microsoft Windows Server and Red Hat Enterprise Linux.

• Extensive automation experience with PowerShell and Shell Scripting for automating repeatable tasks and installations.

• Experience managing Active Directory (AD), Azure Active Directory, AD FS, single sign-on using SAML and Group Policy management.

• Perform analysis of security posture by reviewing vulnerability and compliance scans and making recommendations for remediations and managing POA&Ms.

• Excellent problem solving, research, and follow-up skills.

• Minimum 5+ years of Administration experience with cloud-based applications (MS O365, SharePoint, Azure AD, AWS).

• Hands-on experience with containerization and orchestration (e.g., Docker, Kubernetes).

• Solid understanding of networking, Linux/Unix systems, and version control systems (e.g., Git).

• Experience managing Azure Firewalls, AWS Network Firewall, AWS Network ACLs, AWS security groups, Azure network security groups, and related resources.

• Solid understanding of developing and leveraging CI/CD pipelines (Continuous Integration/Continuous Deployment).

• Candidate must, at a minimum, meet one of these certifications: CISSP, CCSP, MCSE, AWS Certified DevOps Engineer, Certified AWS SysAdmin, AWS Certified Advanced Networking, Azure Solutions Architect, Expert Azure Developer Associate.

• Clearance: This position requires candidates to obtain a Public Trust security clearance.

Preferred Qualifications:

• Experience with Wiz, Axonius, Crowd Strike, Nucleus, and Network/Endpoint security tools.

• Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application sourcetypes is a plus.

• Experience working in an Agile environment and familiarity with Agile project management practices is a plus.

We're not looking for perfectly polished resumes or perfect fits. We're looking for people who break limits, ask hard questions, and don't wait to be told what's next. At Leidos, we're not following the roadmap - we're redrawing it.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Descrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#Remote