Cloud Cyber Security Engineer

Key Responsibilities

Develop and maintain security policies, procedures, and best practices for cloud and cloud-native environments

Perform security assessments, vulnerability management, and risk analysis for cloud-based systems across secure enclaves

Implement and manage security controls for Kubernetes clusters and containerized applications

Ensure integration of security measures into CI/CD pipelines and DevSecOps processes

Conduct security reviews of cloud architectures, service configurations, and system design changes to understand impact on security controls

Develop and maintain ATO packages and ensure compliance with DOD/IC standards and frameworks such as DODI 8500 series, NIST SP 800‑37, SP 800‑53, CNSSI 1253, ICD 503

Implement and manage continuous monitoring solutions for cloud environments

Collaborate with development teams to ensure secure coding practices and perform code reviews

Stay current with emerging cloud security threats, technologies, and best practices

Required Qualifications

Active or current Top Secret with SCI eligibility and ability to obtain Polygraph

Bachelor’s degree in a related field and 8+ years of industry experience with 5+ years in cybersecurity (or equivalent experience)

At least one DoD 8570.01‑M IAT Level II or higher certification (e.g., CCNA Security, CySA+, Security+ CE, CISSP or Associate)

5+ years securing cloud-based software applications and infrastructure and implementing security controls in controlled cloud environments

5+ years of experience hardening Linux hosts and automating DISA STIG implementation

Experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; understanding of microservices architecture and service mesh

Demonstrated experience developing A&A packages to obtain and maintain ATO in secure environments; strong knowledge of compliance frameworks NIST SP 800‑37, SP 800‑53, CNSSI 1253 and applicable DOD

Experience with tools such as Xacta or eMass, performing vulnerability compliance scans, and assessing STIG compliance

Experience with scripting languages such as Bash and Python for automation

Understanding of secure software development practices and code reviews

Experience with encryption and transport, especially in the cloud

Preferred Qualifications

Multiple IAT/IAM II or III advanced certifications (e.g., CISSP‑ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)

Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security Specialty

Kubernetes certifications such as KCNA, CKA, CKS

Prior Linux administration experience and certifications such as Linux+, Red‑Hat RHCSA, RHCE

Experience with ICD 503 and related compliance directives, policies, procedures

Experience with security tools such as Splunk, Nessus, SonarQube, and DAST/SAST tools such as Prisma Cloud and SonarQube

Experience applying Zero Trust framework to secure systems

Prior network engineering experience

Experience applying security controls to Generative AI implementations

Equal Opportunity Employer Statement
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#J-18808-Ljbffr