Cloud Security Engineer (Cloud DevSecOps Engineer III)

Job DescriptionJob DescriptionSalary:

Position OverviewCreative Visions is seeking a Cloud Security Engineer to support secure DevSecOps, cloud engineering, and cybersecurity automation initiatives within AWS environments supporting federal systems.

Creative Visions is actively pursuing this federal opportunity. Positions associated with this effort are contingent upon contract award, funding availability, and government approval of proposed personnel. Selected candidates may receive contingent offers of employment pending award and successful completion of applicable clearance and suitability requirements.

ResponsibilitiesImplement secure cloud-native architectures and DevSecOps pipelinesSupport security integration into CI/CD workflowsPerform SAST/DAST and security code reviewsImplement AWS security controls and automationSupport Infrastructure-as-Code (IaC) deploymentsConfigure and manage cloud security technologiesConduct vulnerability analysis and remediation activitiesSupport compliance and authorization activities for cloud systems

Required QualificationsMinimum of 5 years of IT experience, demonstrating experience in the following areas: Cloud-native architectures, AWS, VPC, Security Groups, IAM, Docker, KMS, S3 Encryption, RDS Encryption, HTTPS, SSL Certificates, Data Lake security, CloudFormation, CloudFlare, CloudFront, API Gateway, Lambda, Egress proxies, application security, domain segmentation, authentication, data protection, and automation of processes.Experience using AWS Infrastructure-as-Code (IaC), Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS) and Software-as-a-Service (SaaS).Research, Design, Development, Testing and Deployment experience using AWS IaaS, PaaS services, tools and technologies to support continuous integration and delivery on Linux Environment.Demonstrated ability to build and execute complex security plans in AWS.Experience working with compliance and regulatory requirements in AWS.Experience working in a risk-based environment including mitigation, planning, and implementation in AWS.Hands on experience with experience in Splunk, Nessus, Tenable Security Center, and firewall tools such as Palo Alto, Imperva, Fortinet, etc.Education & CertificationsBachelors degree REQUIREDOne or more REQUIRED:Certified Information Systems Auditor (CISA)Certified in Risk and Information Systems Control (CRISC)Certified Information Security Manager (CISM)Certified in Governance of Enterprise IT (CGEIT)Certified Information Systems Security Professional (CISSP)Certified Authorization Professional (CAP)

ClearancePublic Trust / Suitability