Cloud Architect
Innosoft Corporation
Job Description
Job DescriptionJob DescriptionCloud Architect — DOJ Federal Bureau of Prisons, IT CSSS ContractLocation: 320 First Street NW, Washington, DC 20534 (On-site)
Contract: DOJ BOP IT Consolidated Security Support Services (IT CSSS)
RFQ: 15BPCC26Q00000029
Positions: 1 Key Personnel⚠️ Mandatory RequirementsU.S. Citizenship RequiredPublic Trust + Suitability Clearance RequiredMust pass DOJ background investigation and drug testingMaster's Degree Required (Cybersecurity, Cloud Computing, Computer Science, or related field)10 years of experience in cloud and cloud security solutions in FEDERAL GOVERNMENT systemsPosition OverviewDesigns and oversees the cloud security architecture for BOP's multi-cloud environment, with depth in AWS. Builds AI-enabled compliance automation, continuous monitoring solutions, and FedRAMP-aligned controls.
Acts as the senior technical voice for cloud security strategy.Key ResponsibilitiesArchitect cloud security solutions across AWS (and multi-cloud as required) for BOP federal systemsDesign and implement continuous monitoring (ConMon) for cloud systems and applicationsBuild AI-powered compliance tooling that scans cloud accounts and VPCs, collects FedRAMP-specific responses, and identifies unmet controlsDefine cloud security controls aligned to NIST, FedRAMP, CIS, AWS, and Azure best practicesReview and interpret reports from AWS GuardDuty, Security Hub, Amazon Inspector, and SplunkArchitect AWS Direct Connect, AWS Outposts, native firewall, and reverse-proxy configurationsLead end-to-end data encryption design (in transit and at rest), including SSL/TLS implementationIdentify vulnerabilities, particularly data or configuration tampering risksRequired Technical SkillsStrong AWS networking expertise: native firewall, Direct Connect, Outposts, reverse proxiesProven design and implementation of continuous monitoring for cloud systemsCapability to design AI-powered tools that scan cloud accounts/VPCs and identify control gapsStrong experience interpreting Splunk SIEM reports and alertsProficient with AWS GuardDuty, Security Hub, and Amazon InspectorDeep understanding of end-to-end data encryption (SSL/TLS, KMS)Preferred CertificationsAWS Solutions Architect ProfessionalAWS Security SpecialtyCCSP, CISSPPreferred (Differentiators)Prior DOJ or BOP experience and domain knowledgeFedRAMP authorization experience (SaaS, PaaS, IaaS)Multi-cloud (Azure, GCP) in addition to AWS depthHands-on with AI/ML-based compliance automation toolsWork EnvironmentThis is an on-site position at DOJ Bureau of Prisons headquarters in Washington, DC. The role requires daily physical presence due to the sensitive nature of federal security systems.CompensationW2 Salary: $200,000 – $250,000/year
C2C Rate: ~$135/hour⚠️ Key Personnel NoticeThis position is designated as Key Personnel under the DOJ BOP IT CSSS contract. The selected candidate will be named in the proposal and is expected to remain on the contract for its duration. Substitution requires government approval.Innosoft Corporation is an Equal Opportunity Employer.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.