Cloud Enterprise Cybersecurity Engineer

Cloud Enterprise Cybersecurity Engineer

The Cloud Enterprise Cybersecurity Engineer will lead cybersecurity engineering and operational support to Mobility Air Forces (MAF) C2 cloud-based systems as they migrate to cloud environments and advance modernization initiatives. This role focuses on sustaining and enhancing cybersecurity posture across IL-5 and IL-6 operational and test environments, including supporting compliance, vulnerability management, and risk mitigation.

Key Responsibilities

* Provide cybersecurity engineering support for MAF C2 IL-5 and IL-6 cloud operational and test environments.

* Assess cloud-based cybersecurity software, tools, processes, and technologies supporting MAF C2 modernization initiatives and provide analysis to the OL-2 C3MMS Cybersecurity Lead.

* Collaborate with OL-2 stakeholders to integrate cybersecurity considerations into modernization initiatives.

* Track and manage cloud Security Technical Implementation Guide (STIG) compliance, including coordination with Enterprise Security Services (ESS) using the STIG Manager tool.

* Facilitate coordination with PMOs and development teams to assess new DISA quarterly STIG updates and ensure timely remediation of findings.

* Review STIG findings and support development of Plans of Action and Milestones (POA&Ms) for unresolved issues.

* Monitor cloud ACAS scan results and coordinate with PMOs, developers, ESS, and ISSMs to ensure timely patching of cloud environments.

* Support and guide development teams in establishing and maintaining effective cloud patch management processes.

* Lead cloud POA&M processes and workflows, ensuring risks are tracked, mitigated, and reported consistently.

Required Qualifications

* Bachelor's degree in an IT related field, or direct equivalent experience

* Active SECRET clearance

* Prior experience supporting DoD IL-5 and IL-6 cloud environments.

* Demonstrated experience evaluating cybersecurity tools, technologies, and processes in cloud environments.

* Substantial experience assessing, reviewing, and maintaining DISA STIG compliance.

* Experience reviewing ACAS scan reports and coordinating vulnerability remediation.

Desired Qualifications

* One of the following certifications: CompTIA Security+ CE, CySA+, CASP+, CGRC, CISM

* One of the following certifications: Certified Cloud Security Professional (CCSP), AWS Certified Security - Specialty

* Strong background supporting MAF C2 systems, including associated commercial off-the-shelf (COTS) solutions and infrastructure.

• Work is performed in a professional office or government facility environment.
• Participation in classified discussions consistent with SECRET clearance requirements is expected.
• Regular collaboration with geographically distributed government and contractor teams.
• Standard business hours with flexibility as required to support security events or authorization milestones.