Cloud Cyber Security Engineer - TS/SCI
Xcelerate Solutions, Bethesda, MD, United States
Xcelerate Solutions is seeking our next Cloud Cyber Security Engineer, to play a critical role in the accreditation of a state‑of‑the‑art technology stack under the DOMEX Technology Platform (DTP) where we support our client’s mission to centralize and standardize Tasking, Collection, Processing, Exploitation and Dissemination (TCPED) of Open Source Intelligence (OSINT) across the Defense and Intelligence Community enterprises. We leverage cloud‑based computing, artificial intelligence (Al), machine learning (ML), and cross‑domain transfer systems to provide cutting edge data exploitation, enrichment, triage, and analytics capabilities to the Defense Intelligence Enterprise.
As a Cloud Cyber Security Engineer, you will be responsible for providing technical security expertise in securing, hardening, and maintaining compliance of cloud‑based software platforms and infrastructure across multiple secure networks. You will lean on your experience with security technologies, industry best practices, vulnerability management, and risk management frameworks (RMF) to employ effective security solutions. In this role, you will collaborate closely with compliance personnel, software engineers, system engineers, system architects, and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to ensure system regulatory compliance and security posture. Come join our award‑winning organization and work with some of the most talented and brightest minds in the GovCon industry.
Location
Bethesda, MD
Security Clearance
Active TS/SCI
Responsibilities
Develop and maintain security policies, procedures, and best practices for cloud and cloud‑native environments
Perform security assessments, vulnerability management, and risk analysis for cloud‑based systems across secure enclaves
Implement and manage security controls for Kubernetes clusters and containerized applications
Ensure integration of security measures into CI/CD pipelines and DevSecOps processes
Conduct security reviews of cloud architectures, service configurations, and system design changes to understand the impact to security controls
Develop and maintain ATO packages and ensure compliance with DOD/IC standards and frameworks such as DODI 8500 series, NIST SP 800-37, SP 800-53, CNSSI 1253, ICD 503
Implement and manage continuous monitoring solutions for cloud environments
Collaborate with development teams to ensure secure coding practices and perform code reviews
Stay current with emerging cloud security threats, technologies, and best practices
Active or current Top Secret with SCI eligibility and ability to obtain Polygraph
Bachelor’s degree in a related field and 8+ years of industry experience with 5+ years in cybersecurity or additional years of experience in lieu of degree (ISSO experience must be supplemented with demonstrated technical expertise)
At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, CISSP (or Associate)
5+ years securing cloud‑based software applications and infrastructure as well as the implementation of security controls to controlled cloud environments
5+ years of experience hardening Linux hosts and automating DISA STIG implementation
Demonstrated experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; must understand microservices architecture and service mesh.
Demonstrated experience developing A&A packages to obtain and maintain ATO in secure environments. Strong knowledge of compliance frameworks NIST SP 800-37, SP 800-53, CNSSI 1253 and applicable DOD
Experience with tools such as Xacta or eMass, performing vulnerability compliance scans, and assessing STIG compliance
Experience with scripting languages such as Bash and Python for automation
Understanding of secure software development practices and code reviews
Experience with encryption and transport, especially in the cloud
Preferred Qualifications
Multiple IAT/IAM II or III advanced certifications (e.g. CISSP-ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)
Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security Specialty
Kubernetes certifications such as KCNA, CKA, CKS
Prior Linux administration experience and certifications such as Linux+, Red Hat certifications (e.g. RHCSA, RHCE)
Experience with ICD 503 and related compliance directives, policies, procedures
Experience with security tool such as Splunk, Nessus, SonarQube, as well as DAST & SAST tools such as Prisma Cloud and SonarQube
Experience applying Zero Trust framework to secure systems
Experience applying security controls to Generative AI implementations
#J-18808-Ljbffr
As a Cloud Cyber Security Engineer, you will be responsible for providing technical security expertise in securing, hardening, and maintaining compliance of cloud‑based software platforms and infrastructure across multiple secure networks. You will lean on your experience with security technologies, industry best practices, vulnerability management, and risk management frameworks (RMF) to employ effective security solutions. In this role, you will collaborate closely with compliance personnel, software engineers, system engineers, system architects, and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to ensure system regulatory compliance and security posture. Come join our award‑winning organization and work with some of the most talented and brightest minds in the GovCon industry.
Location
Bethesda, MD
Security Clearance
Active TS/SCI
Responsibilities
Develop and maintain security policies, procedures, and best practices for cloud and cloud‑native environments
Perform security assessments, vulnerability management, and risk analysis for cloud‑based systems across secure enclaves
Implement and manage security controls for Kubernetes clusters and containerized applications
Ensure integration of security measures into CI/CD pipelines and DevSecOps processes
Conduct security reviews of cloud architectures, service configurations, and system design changes to understand the impact to security controls
Develop and maintain ATO packages and ensure compliance with DOD/IC standards and frameworks such as DODI 8500 series, NIST SP 800-37, SP 800-53, CNSSI 1253, ICD 503
Implement and manage continuous monitoring solutions for cloud environments
Collaborate with development teams to ensure secure coding practices and perform code reviews
Stay current with emerging cloud security threats, technologies, and best practices
Active or current Top Secret with SCI eligibility and ability to obtain Polygraph
Bachelor’s degree in a related field and 8+ years of industry experience with 5+ years in cybersecurity or additional years of experience in lieu of degree (ISSO experience must be supplemented with demonstrated technical expertise)
At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, CISSP (or Associate)
5+ years securing cloud‑based software applications and infrastructure as well as the implementation of security controls to controlled cloud environments
5+ years of experience hardening Linux hosts and automating DISA STIG implementation
Demonstrated experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; must understand microservices architecture and service mesh.
Demonstrated experience developing A&A packages to obtain and maintain ATO in secure environments. Strong knowledge of compliance frameworks NIST SP 800-37, SP 800-53, CNSSI 1253 and applicable DOD
Experience with tools such as Xacta or eMass, performing vulnerability compliance scans, and assessing STIG compliance
Experience with scripting languages such as Bash and Python for automation
Understanding of secure software development practices and code reviews
Experience with encryption and transport, especially in the cloud
Preferred Qualifications
Multiple IAT/IAM II or III advanced certifications (e.g. CISSP-ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)
Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security Specialty
Kubernetes certifications such as KCNA, CKA, CKS
Prior Linux administration experience and certifications such as Linux+, Red Hat certifications (e.g. RHCSA, RHCE)
Experience with ICD 503 and related compliance directives, policies, procedures
Experience with security tool such as Splunk, Nessus, SonarQube, as well as DAST & SAST tools such as Prisma Cloud and SonarQube
Experience applying Zero Trust framework to secure systems
Experience applying security controls to Generative AI implementations
#J-18808-Ljbffr