Cloud Security Specialist(API)

Senior Cloud Security Specialist (API) - supporting an IT Security Engineering team responsible for the strategy, design, deployment, and maintenance of effective security solutions in cloud, local, and hybrid environments. This role supports a data access management project and requires proficiency in REST API integrations, providing hands-on API integration support between cloud applications using modern and secure techniques.Anticipated Period of Performance: 06/01/2026 - 12/31/2026 (strong possibility of extension)Place of Performance: On-site, Washington, DC**U.S. Citizenship required., Including, not limited to:Build resilient, secure API integrations between cloud applications in support of an end-to-end data access management solution,Produce API integration architecture documentation detailing integrations between cloud systems,Develop data models and attribute mapping across cloud systems,Write automation scripts and orchestration components (serverless functions, scheduled jobs, event handlers),Conduct comprehensive testing and documentation of cloud integrations,Support data loss prevention and cloud access security broker initiatives,Work across multiple teams as a Cloud Security Engineer SME to support security design, build, implementation, and monitoring of cloud platforms, applications, and tools,Offer technical consultation to cloud engineering teams on secure implementations,Create or update security configuration guides and playbooks

Extensive REST API experience in implementing, securing, automating, testing, and documenting API integrations,Strong understanding of resilient integration patterns including error handling, retry mechanisms, and monitoring strategies,Demonstrated federal experience and comprehensive knowledge in adopting and implementing federal cybersecurity requirements, including the NIST Cybersecurity Framework, OMB Memorandum M-22-09, and NIST SP 800-53,Deep analytical, problem-solving, and troubleshooting experience to independently resolve complex security challenges,Proven ability to provide technical security consultation and advisory services,Preferred: AWS Certified Security - Specialty (strongly preferred); AWS Certified Solutions Architect - Professional or Associate,Preferred: Experience with integrations between ServiceNow, Collibra, and Saviynt, Proficiency in scripting and automation languages for security orchestration,Experience implementing cloud-native serverless architectures and services,Experience architecting and implementing security controls across public cloud platforms,Experience implementing DevSecOps practices including CI/CD pipelines and infrastructure as code,Experience implementing cloud access security broker (CASB) solutions for SaaS application security and visibility,Strong understanding of IAM, network security design, security operations, security architecture, cloud security, data loss protection, zero trust, DevSecOps, and vulnerability management