Senior Cloud Security Engineer (AWS / RMF / ATO)

Auria

$130K — $170K *
Aerospace & Defense
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity, Computer Engineering, Computer Science, or related field preferred; equivalent experience considered.
  • U.S. Citizenship with the ability to obtain and maintain a DoD TS/SCI clearance.
  • 5 years of experience in cybersecurity engineering for DoD or mission-critical systems.
  • Minimum of 2 years' hands-on experience securing AWS cloud environments.
  • Demonstrated experience supporting DoD RMF accreditation and ATO processes.
  • Strong knowledge of NIST 800-53 security controls and DoD STIG implementation.
  • Experience with vulnerability scanning tools like ACAS or Nessus.

Responsibilities

  • Identify and evaluate cloud-based components for security compliance tooling.
  • Collaborate with engineering teams to implement security-by-design principles.
  • Integrate security controls into CI/CD pipelines and microservices.
  • Implement and maintain secure AWS environments supporting DoD mission systems.
  • Apply secure cloud architecture patterns to comply with DoD security requirements.
  • Execute RMF activities according to DoD Instructions.
  • Develop and maintain RMF artifacts and support ATO preparation.

Benefits

  • Generous and growing PTO that increases with tenure.
  • Flex time for work-life balance.
  • 11 paid days off including fixed and floating holidays.
  • 401(k) match up to 4% with no vesting period.
  • Up to $12,000 annually for education and certifications.
  • High-quality medical plans with a company-sponsored HSA.
  • Fully covered life insurance up to $50K at no cost.
Full Job Description
Auria is seeking a Senior Cloud Security Engineer to support the security architecture and accreditation of AWS cloud-hosted mission systems supporting the DoD USSF Joint Antenna Marketplace (JAM) program. This role focuses on implementing and securing AWS cloud environments and executing Risk Management Framework (RMF) activities to obtain and maintain an Authority to Operate (ATO). This position is remote with preference for Colorado Springs, CO or Huntsville, AL.

The successful candidate will work closely with program chief engineer, cybersecurity lead, system engineers, and software developers to ensure secure cloud architecture, actively support deployment of security tools and services, and compliance with DoD cybersecurity standards.

WHAT YOU CAN EXPECT TO DO:

System & Cloud Security Implementation:
  • Identify and evaluate cloud-based COTS/GOTS/AWS-native infrastructure components to support and deploy security compliance tooling.
  • Collaborate with systems engineers and software developers to implement security-by-design principles
  • Integrate security controls into CI/CD pipelines, containerized applications, and microservice architectures.
  • Implement and maintain secure AWS cloud environments supporting DoD mission systems
  • Apply secure cloud architecture patterns and AWS security services to support compliance with DoD security requirements.
  • Implement security controls aligned with NIST 800-53, FedRAMP, and DoD security guidance.
  • Integrate security controls into DevSecOps pipelines and cloud-native services.
  • Configure and manage identity, encryption, logging, and network security withing AWS environments.


RMF & ATO Support
  • Execute Risk Management Framework (RMF) activities in accordance within eMASS IAW DoDI 8510.1 and DoDI 8500.01.
  • Develop and maintain RMF artifacts including:
    • System Security Plan (SSP)
    • Plan of Action and Milestones (POA&M)
    • Risk Assessment Reports (RAR)
    • Security Control Traceability Matrix (SCTM)
  • Maintain cybersecurity documentation and evidence within eMASS
  • Support preparation of ATO packages and security authorization activities
  • Coordinate with program ISSMs, cybersecurity lead, government stakeholder to support system accreditation.


Vulnerability & Compliance Management
  • Perform vulnerability scanning and remediation using tools such as ACAS, Nessus, OpenSCAP, or SCAP Compliance Checker
  • Implement and validate DISA STIGs and security baselines across operating systems, containers, and cloud services.
  • Support continuous monitoring activities required to maintain system accreditation.
  • Integrate security controls into CI/CD pipelines, containerized applications, and microservice architectures.


Documentation & Program Support
  • Produce cybersecurity documentation and technical artifacts supporting RMF accreditation
  • Participate in technical interchange meetings, system design reviews, integration events, and program management review.
  • Support cybersecurity testing, demonstrations, and operational deployments.


WHAT THE TEAM REQUIRES:
  • Bachelor's degree Cybersecurity, Computer Engineering, Computer Science, or related field preferred; equivalent experience considered.
  • U.S. Citizenship with ability to obtain and maintain a DoD TS/SCI clearance.
  • 5 years of experience in cybersecurity engineering for DoD, NASA, NOAA or mission-critical systems
  • At least 2 years' hands-on experience securing AWS cloud environments.
  • Demonstrated experience supporting DoD RMF accreditation and ATO processes
  • Strong knowledge of:
    • NIST SP 800-53 security controls
    • DoD STIG implementation
    • FedRAMP security requirements
    • DoDI 8510.01 RMF process
  • Experience with vulnerability scanning tools such as ACAS or Nessus
  • Mission-Driven Professional: Collaborative contributor motivated by the opportunity to develop cutting-edge solutions that protect and serve both the nation and the world.


WHAT THE TEAM PREFERS:

  • Active DoD Secret or TS/SCI clearance
  • Experience with AWS GovCloud or IL4/IL5 environments
  • Familiarity with containerized environments (Docker, Kubernetes) and their security implications.
  • Experience with SIEM platforms, endpoint protection, or security monitoring tools
  • Knowledge of Zero Trust Architecture principles
  • DoD 8570 / 8140 certification such as:
    • Security+
    • CISSP
    • CASP+
    • CySA+


PAY TRANSPARENCY: The salary offered will be based on the selected candidate's qualifications - skills, education & experience - and the position level. $130,000 - 170,000

APPLICATION DEADLINE: June 4, 2026

Pay Range: $130,000 - $170,000 per year

Similar Jobs

More Jobs at Auria

More Aerospace & Defense Jobs

Find similar Senior Cloud Security Engineer (AWS / RMF / ATO) jobs: