Cloud Engineer with Security Clearance

Big Impact Tech (BIT)
Washington, United States of America
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Washington, United States of America

Tech stack

Multitier Architecture
Microsoft Windows
Microsoft Active Directory
Amazon Web Services (AWS)
Azure
Bash
Cloud Engineering
Configuration Management
Computer Security
Databases
Continuous Integration
Data as a Services
Linux
DNS
Github
Issue Tracking Systems
Virtual Private Networks (VPN)
Python
PostgreSQL
Routing
Powershell
Cloud Services
Ansible
Zero Trust Network Access
Runbook
SQL Databases
TCP/IP
Data Logging
Scripting (Bash/Python/Go/Ruby)
Transport Layer Security
Cloud Monitoring
Amazon Web Services (AWS)
Gitlab
GIT
Cloudformation
Kubernetes
Bicep
Kafka
Cloudwatch
Elastic Beanstalk
Terraform
Code Restructuring
Serverless Computing
Docker
Key Vault
User Administration

Job description

Clearance: Active Public Trust (minimum) required; Secret (or ability to obtain) preferred Company Description Big Impact Tech (BIT) is a Minority-Owned Small Business providing IT and business management consulting to federal and commercial clients. We deliver mission-focused solutions in data, cloud, cybersecurity, and program management. Summary BIT seeks a mission-driven Cloud Engineer to design, build, secure, and sustain cloud platforms and mission applications across AWS, Microsoft Azure, and/or DoD/FedRAMP-authorized environments. You will partner with cybersecurity, application teams, and stakeholders to deliver resilient, compliant, and cost optimized cloud services that support maritime safety, security, and stewardship. Responsibilities * Design secure, scalable landing zones, VNET/VPC architectures, and networking aligned to Zero Trust, and government policies.

  • Implement infrastructure as code (Terraform, CloudFormation, Bicep) and configuration management (Ansible, SSM, Desired State Configuration).
  • Create reusable modules/pipelines (CI/CD) in GitHub/GitLab/Azure DevOps for repeatable provisioning and blue/green deployments.
  • Engineer controls to meet FedRAMP, FISMA, and NIST SP 800 53 requirements.
  • Stand up and manage container and serverless platforms (EKS/AKS, ECS, Lambda, Azure Functions) and PaaS services (databases).
  • Implement observability (logging, metrics, tracing) using CloudWatch, Azure Monitor, OpenTelemetry, or Synthetics.
  • Contribute to cloud governance standards, landing zone patterns, and best practices catalogs.
  • Partner with developers, cybersecurity, and mission owners to migrate/modernize systems (rehost/refactor/replatform).
  • Provide support, root-cause analysis, and knowledge transfer to operations teams.
  • Provide Tier I and Tier II Helpdesk Support to end users via phone, email, and ticketing systems.

Requirements

  • Support user account management (Active Directory, permissions, and group policies) Qualifications * 3-7+ years of hands-on cloud engineering or SRE experience in AWS and/or Azure (federal or enterprise).

  • Proficiency with Infrastructure as Code (Terraform preferred) and CI/CD pipelines.

  • Strong foundation in networking (TCP/IP, DNS, TLS, routing, VPNs), Linux/Windows, containers (Docker, Kubernetes), and git. Experience implementing security controls aligned to NIST 800 53 and FedRAMP; fa

  • familiarity with RMF/ATO processes.

  • Scripting skills in Python, PowerShell, or Bash.

  • Ability to create clear documentation, diagrams, and runbooks; strong stakeholder communication skills.

  • U.S. Citizenship (required government roles) and ability to obtain/maintain required clearance.

  • Data services expertise (RDS/SQL MI, Postgres, KMS/Key Vault, Secrets Manager) and event-driven patterns (Kafka/Event Hub).

Apply for this position