Cloud Security Engineer (Cloud DevSecOps Engineer III)

Creative Visions is seeking a Cloud Security Engineer to support secure DevSecOps, cloud engineering, and cybersecurity automation initiatives within AWS environments supporting federal systems.

Creative Visions is actively pursuing this federal opportunity. Positions associated with this effort are contingent upon contract award, funding availability, and government approval of proposed personnel. Selected candidates may receive contingent offers of employment pending award and successful completion of applicable clearance and suitability requirements.

Responsibilities

• Implement secure cloud-native architectures and DevSecOps pipelines
• Support security integration into CI/CD workflows
• Perform SAST/DAST and security code reviews
• Implement AWS security controls and automation
• Support Infrastructure-as-Code (IaC) deployments
• Configure and manage cloud security technologies
• Conduct vulnerability analysis and remediation activities
• Support compliance and authorization activities for cloud systems

Do you have experience in Vulnerability scanning?, Do you have a Bachelor's degree?, * Minimum of 5 years of IT experience, demonstrating experience in the following areas: Cloud-native architectures, AWS, VPC, Security Groups, IAM, Docker, KMS, S3 Encryption, RDS Encryption, HTTPS, SSL Certificates, Data Lake security, CloudFormation, CloudFlare, CloudFront, API Gateway, Lambda, Egress proxies, application security, domain segmentation, authentication, data protection, and automation of processes.

• Experience using AWS Infrastructure-as-Code (IaC), Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS) and Software-as-a-Service (SaaS).
• Research, Design, Development, Testing and Deployment experience using AWS IaaS, PaaS services, tools and technologies to support continuous integration and delivery on Linux Environment.
• Demonstrated ability to build and execute complex security plans in AWS.
• Experience working with compliance and regulatory requirements in AWS.
• Experience working in a risk-based environment including mitigation, planning, and implementation in AWS.
• Hands on experience with experience in Splunk, Nessus, Tenable Security Center, and firewall tools such as Palo Alto, Imperva, Fortinet, etc.

Education & Certifications

• Bachelor's degree REQUIRED
• One or more REQUIRED:

• Certified Information Systems Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified Information Security Manager (CISM)
• Certified in Governance of Enterprise IT (CGEIT)
• Certified Information Systems Security Professional (CISSP)
• Certified Authorization Professional (CAP)