Operations and Security Engineer

Red Canyon Technologies is seeking an Operations and Security Engineer to support mainframe and legacy system modernization engagements under the DISA Reforged contract. This role is the operational and security anchor of the delivery team - the person who ensures that modernized systems are implemented correctly, secured appropriately, and handed off with the runbooks, documentation, and operational scaffolding needed to sustain them.

This is a broad, implementation-focused role. The ideal candidate combines hands-on technical depth in security and operations with the flexibility to support a range of modernization activities - from security compliance documentation and ATO support to operational configuration, testing, cutover planning, and automation. Experience in mainframe or legacy environments is a strong plus; experience in DoD security frameworks is essential.

This position is contingent upon contract award.

Responsibilities

Security & Compliance

• Support implementation of modernization solutions with a focus on security configuration, operational readiness, and compliance - including ICAM, RBAC, and Zero Trust architecture elements.
• Support ATO and SNAP/eMASS activities, including security control documentation, evidence collection, and coordination with ISSO/ISSM personnel.
• Conduct or support security and compliance reviews (NIST 800-53, RMF, CMMC Level 2, DISA STIGs) as they apply to modernized system architectures.
• Support security scanning remediation, POA&M-driven fixes, and configuration compliance reporting.
• Work with IAM/security teams on mainframe security administration (RACF or equivalent) and hardening guidance implementation.

Operations & Documentation

• Develop and maintain operational documentation: runbooks, system administration guides, standard operating procedures, change plans, and post-implementation support plans.
• Provide operational support during transition phases of engagements, ensuring continuity of service and rapid issue resolution as legacy systems are decommissioned.
• Support disciplined promotion of code and configuration changes by coordinating with release/change management processes; develop rollback procedures and post-migration validation steps.

Testing & Cutover

• Assist with testing and quality assurance activities: develop test plans, execute test cases, and document results for modernized systems and applications.
• Support cutover planning and execution activities, including pre-cutover validation, go/no-go assessment, hypercare monitoring, and post-cutover issue resolution.

Automation & AIOps

• Identify and implement automation opportunities to reduce operational toil - using scripting (REXX, shell), job automation, and workflow tooling.
• Apply AIOps concepts to improve alert quality, accelerate incident triage, and enhance performance/capacity insights within customer-approved tooling and processes.
• Support the development and delivery of AI-enabled operational tools (e.g., automated assessment agents, documentation generators) as part of Red Canyon's internal innovation efforts under Reforged.

Performs other related duties as assigned.

• 5+ years of experience in IT operations, systems engineering, or cybersecurity, with a track record of supporting complex Federal IT environments.
• Eligible for Secret clearance; active clearance strongly preferred.
• Working knowledge of DoD security frameworks: RMF, NIST 800-53, CMMC, eMASS, and SNAP.
• Hands-on experience with security implementation activities including access control configuration, vulnerability assessment, and compliance documentation.
• Demonstrated ability to produce clear, professional operational documentation that enables downstream teams to independently manage and maintain modernized systems.
• Experience supporting system testing, UAT, or cutover activities in an enterprise IT context.

Preferred

• Experience working in or around mainframe environments - operational knowledge of IBM z/OS, DB2, CICS, RACF, JCL, or TSO/ISPF is highly valued.
• Familiarity with ICAM systems and modernization, including identity federation, access control, and credential management in hybrid environments.
• Automation/scripting experience: REXX, shell scripting, job automation, or operational runbook development.
• Familiarity with AIOps concepts and tooling (anomaly detection, alert reduction, faster incident triage) within approved DoD frameworks.
• Security certifications: CISSP, Security+, CAP, or equivalent.
• Experience with DISA STIGs, eMASS, and DoD cloud authorization processes (FedRAMP, DISA IL2/IL4/IL5).
• Background in agile delivery environments, including sprint-based testing cycles and DevSecOps pipelines.
• Familiarity with ITSM processes/tools (incident, problem, change, and knowledge management).
• Active TS/SCI clearance.

Eligible full-time employees receive a comprehensive benefits package, including medical, dental, vision, life and disability coverage, retirement savings with company match, paid time off, voluntary supplemental benefits, and access to an employee assistance program. The package also includes educational assistance, with tuition reimbursement.

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that provides government agencies and commercial organizations with high-quality IT, professional, environmental, and research and development services. DDC is dedicated to empowering the Navajo Nation and communities we serve.