AWS Cloud Security Engineer
Remote

What You Will Do

We are seeking an AWS Cloud Security Engineer to support a large-scale cloud modernization effort for a federal client. This role will focus on securing AWS environments, strengthening cloud security operations, automating compliance controls, and partnering with engineering teams to ensure secure application delivery.

Responsibilities include:
• Design, implement, and maintain security controls across AWS cloud environments.
• Help safeguard cloud workloads through strong identity management, monitoring, threat detection, and secure operations practices.
• Develop and support secure AWS architectures using services such as IAM, KMS, CloudTrail, AWS Config, and related monitoring tools.
• Implement centralized logging, monitoring, alerting, threat modeling, vulnerability scanning, and penetration testing practices.
• Support alignment with security and compliance frameworks such as CIS Benchmarks, NIST, HIPAA, FedRAMP, and SOC 2.
• Assist with incident detection, investigation, response, and audit trail maintenance across AWS accounts and services.
• Automate security controls and compliance checks using Infrastructure as Code tools such as Terraform and CloudFormation.
• Integrate security into CI/CD pipelines and collaborate with engineering teams to support secure build, deployment, and release processes.
• Review pipeline configurations, validate secrets management practices, support deployment dry runs, and assist with cutover and rollback planning.

What You Will Need
• Must be authorized to work in the U.S. without sponsorship and able to obtain a Public Trust clearance.
• Bachelor's degree in computer science, cybersecurity, engineering, or a related field; four additional years of relevant experience may be substituted in lieu of a degree.
• Minimum of 6 years of relevant experience in cloud security, cybersecurity, and AWS security.
• Strong hands-on knowledge of AWS services, including EC2, S3, RDS, Lambda, ECS/EKS, CloudFront, Route 53, IAM, CloudTrail, AWS Config, and KMS.
• Experience supporting secure CI/CD pipelines, deployment automation, build troubleshooting, release coordination, and developer enablement.
• Hands-on experience with tools such as GitHub Actions, AWS CodeBuild, ArgoCD, Helm, Docker, secrets management tools, environment configuration, and Terraform templates.
• Experience automating security or compliance workflows using Python, Bash, or similar scripting languages.
• Ability to work independently while collaborating with engineering, DevOps, cloud platform, and security teams.
• Strong problem-solving skills across security, operational, and reliability challenges.

Nice To Have
• AWS Certified Security - Specialty.
• AWS Certified Solutions Architect or AWS Certified DevOps Engineer.
• CISSP, CISM, GIAC, or related cybersecurity certifications.
• Prior experience supporting federal, regulated, or compliance-driven cloud environments.

System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.

#M1

#LI-CS1

Ref: #851-Rockville-S1