NLM Cloud Engineer II

Job DescriptionJob DescriptionSalary: $100,000 - $130,000

Cloud Engineer II

Lexical Intelligence provides software and services related to processing large-scale biomedical information sources. Our Natural Language Processing (NLP) and analytics software is used by policy and decision makers to evaluate and prioritize current and emerging areas of research.

We are looking for a Cloud Engineer II to work within the National Library of Medicine (NLM), Lister Hill National Center for Biomedical Communications (LHNCBC), located at Building 38A on the NIH campus in Bethesda, MD. The Cloud Engineer II will have experience in cloud infrastructure management, DevOps practices, and cybersecurity compliance. The Cloud Engineer II will have a firm understanding of cloud computing platforms (AWS, GCP, Azure), container orchestration, CI/CD pipelines, and Federal security frameworks including FISMA.

The Cloud Engineer II shall be able to work well within a team of multidisciplinary engineers, data scientists, and biomedical informatics researchers. The selected applicant will be subject to a pre-employment background and reference check.

Required Qualifications6 years of relevant cloud engineering or DevOps experienceBachelor's degree or other degree(s) in Computer Science, Information Technology, Engineering, or related fieldsHands-on experience with cloud platforms including AWS, Google Cloud (GC), and/or Microsoft Azure in IaaS, PaaS, and SaaS configurationsProficiency with container orchestration tools such as Kubernetes, Anthos, and/or OpenShiftExperience implementing and administering CI/CD pipelines using tools such as GitLab, GitHub, Nexus, Ansible, and/or TerraformWorking knowledge of Infrastructure as Code (IaC) tools including Terraform, Ansible, Puppet, and/or AWS CDKExperience with containerization platforms such as Docker and related cross-datacenter deployment technologiesFamiliarity with Federal Information Security Modernization Act (FISMA) requirements and the ability to assist with Authority to Operate (ATO) documentation and System Security Plans (SSPs)Experience with monitoring and logging tools such as EFK stack, Prometheus, and/or GrafanaProficiency with vulnerability scanning and security assessment tools such as Tenable Security Center, Prowler, Netsparker, Checkmarx, and/or OWASPStrong written and oral communication skills; ability to convey complex technical information in plain languagePreferred QualificationsExperience supporting cloud operations within a Federal government or NIH/HHS environmentFamiliarity with distributed computing frameworks such as Hadoop and batch queuing systemsExperience with database technologies including RDS, MySQL, MongoDB, MS SQL, PostgreSQL, and/or ElasticsearchKnowledge of Identity and Access Management (IAM) for commercial cloud accounts and multi-cloud environmentsExperience with version control systems such as Bitbucket and/or GitLabFamiliarity with ticketing and documentation systems such as JIRA, ServiceNow, and Confluence WikiUnderstanding of NIST SP 800-53, NIST SP 800-171, and related federal cybersecurity standardsExperience supporting Privacy Impact Assessments (PIA) and Privacy Threshold Analyses (PTA)Familiarity with open-source server technologies such as Apache and related servicesRelevant certifications such as AWS Certified Solutions Architect, Google Professional Cloud Engineer, Microsoft Azure Administrator, or equivalentResponsibilitiesRecommend, deploy, and manage version control systems including Bitbucket, GitLab, and GitHubImplement and administer CI/CD pipelines for all approved development frameworks at NLMConfigure and maintain Infrastructure as Code (IaC) tools including Terraform, Ansible, Puppet, and CDKImplement, administer, and support cross-datacenter containerized deployments using Docker and related toolsSet up and maintain elastic and cost-efficient orchestration environments using Kubernetes, Anthos, and OpenShiftProvide monitoring and logging capabilities to collect, store, and analyze performance and availability data across software applications and infrastructureConfigure and manage vulnerability scanners and penetration testing tools to ensure the security of applications and infrastructureProvide technical support and guidance to development teams migrating to and utilizing the DevOps platformProvide day-to-day cloud operations support, including administration of cloud computing, storage, and service platforms; analyze compute and cost models and implement selected cloud solutionsSupport cybersecurity and risk management across the NLM enterprise, including resolving software, firmware, and hardware vulnerabilities identified through regular security scanningAssist the Government in creating, developing, and maintaining Authority to Operate (ATO) documentation and System Security Plans (SSPs)Track and manage current known vulnerabilities using Tenable Security Center and other approved toolsProvide technical support for systems and database design, coordinating and implementing open-source software such as Apache server servicesAdminister, configure, and maintain distributed computing systems using batch queuing software and open-source map/reduce frameworks such as HadoopSupport cloud development and infrastructure for production web services, high-performance computing, and high-throughput processing environmentsAssist in implementing and maintaining FISMA computer security practices, including firewalls, intrusion detection, secure computing environments, and disaster recoveryConduct ongoing vulnerability assessments and threat identification, presenting results and ensuring resolution within prescribed time limitsProvide customer service to internal and external staff, resolving issues in a highly technical environment through clear, accessible communicationEnsure compliance with organizational security and privacy policies, protect sensitive data and systems, report security incidents, and participate in required HHS/NIH cybersecurity and records management trainingEnsure all work complies with HHS, NIH, NLM, and LHNCBC security and operational policies

Salary and BenefitsWe offer a competitive salary and a generous benefits package, including at no cost: full health and dental for you and your dependents, retirement and HSA accounts, short- and long-term disability insurance, life and accident insurance, paid time off, and 11 federal holidays.

LocationBethesda, MD

Equal Employment Opportunity PolicyLexical Intelligence, LLC, provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Lexical Intelligence, LLC | 2001 Veirs Mill Rd #546 | Rockville, MD 20851