Cloud Security Engineer

Type of Requisition: RegularClearance Level Must Be Able to Obtain: SecretPublic Trust/Other Required: NACLC (T3)Job Family: Cyber EngineeringWe are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.GDIT is your place. You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. Our work depends on a Cloud Security Engineer joining our team to support the National Library of Medicine (NLM) activities at Bethesda, Maryland.At GDIT, people are our differentiator. As a Cloud Security Engineer supporting the National Library of Medicine, you will be trusted to work on commercial clouds to secure the configuration management of NLM applications. In this role, a typical day will include:Developing and deploying infrastructure as a code scripts to implement and optimize security controls and mechanisms of a cloud infrastructure

Acting as the subject matter expert for cloud security and tools such as Security Information and Event Management (SIEM), access control mechanisms, Intrusion Detection and Intrusion Prevention Systems (IDS/IPS).

Monitoring Cloud infrastructure and pro-actively mitigate potential incidents before service degradation occurs

Providing guidance to our DevOps teams developing on public cloud platforms, advising on security standards for cloud deployment, and working to identify common patterns for template provisioning

Conducting assessments of security controls for new and existing cloud systems; creating and maintaining as-built system documentation, architecture diagrams, and online collaborative documentation

Determining security modes of operation and recommending new or revised security measures and countermeasures for current security challenges

Collaborating with other NLM team members to continue to evolve and implement a state-of-the-art secure cloud infrastructure.

REQUIRED QUALIFICATIONS AND EXPERIENCE:Bachelor of Science in IT field or relevant experience

BS/BA (or equivalent) and 8 years experience or a MS and 6 years experience

Contract requirement: 7 years of overall IT experience with degree; 11 years without degree; 5 years with MS. Also 5 years of system administration experience; 5 years of system security administration experience

Experience in designing and implementing an enterprise-wide Cloud security architecture

Proficiency with SIEM and vulnerability management solutions

Experience using common networking tools to aid in troubleshooting, including nmap, Wireshark, tcpdump, etc.

Proficiency in one or more scripting languages, such as Python, Perl, Powershell, OR Bash

Proficiency with TCP/IP/UDP ports and protocols, IDS/IPS, Network Access Control List (NACL) Access Control Lists (ACL) and Security Group (SG) applications

Must have CISSP or ability to obtain within first six months of employment

Must have strong written and verbal communications skills

Ability to obtain Level 2 Secret (ANACI) clearance if required

PREFERRED QUALIFICATIONS AND EXPERIENCE:Experience in creating and editing AWS Cloud Formation scripts

Experience in securing and monitoring Kubernetes

Experience in managing, and monitoring a centralized AWS logging architecture

AWS Certified Security - Specialty, ISC2, or Cloud Security Alliance

WHAT GDIT CAN OFFER YOU:Full-flex work week

401K with company match

Internal mobility team dedicated to helping you own your career

Collaborative teams of highly motivated critical thinkers and innovators

Ability to make a real impact on the world around you

#GDITPriority#GDITFedHealthJobs​#GDITFedHealthJobs-NIHCOVID-19 Vaccination Requirement: To protect the health and safety of its employees and to comply with customer requirements, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.