Cloud Engineer

SOSi is seeking a Cloud Engineer to support mission requirements for a structured approach to further develop, integrate, and sustain a scalable, federated data ecosystem that enhances interoperability, governance, and mission-driven analytics for a DoD customer. The primary objective of the program is to bridge the operational gaps between DoD, IC, interagency, and non-traditional international partners to enable real-time information sharing, dynamic data integration, and mission-tailored analytical capabilities., * The contractor shall design, deploy, and maintain secure cloud environments in AWS and Azure, ensuring compliance with DoD cloud security frameworks and best practices.

• The contractor shall configure identity and access management (IAM) solutions, enforce role-based access controls (RBAC), and manage cloud security groups and firewalls.
• The contractor shall optimize cloud networking configurations, including VPC peering, VPNs, and cross-domain connectivity to ensure secure and efficient cloud operations.
• The contractor shall support the development of Infrastructure-as-Code (IaC) solutions using Terraform, CloudFormation, or ARM templates to automate secure cloud deployments.
• The contractor shall contribute to the Cloud Security & Performance Optimization Report, detailing cloud security configurations, resource utilization efficiencies, and compliance measures.
• The contractor shall track and report Kubernetes and other workload-specific cloud resource usage by Work Order, using GovCloud-native observability tools (e.g., Azure Monitor, AWS CloudWatch, Cost Explorer).
• The contractor shall coordinate with other Work Order contractors (e.g., WO-003) to reconcile prepay or reservation usage against actual consumption and provide monthly reports on compute and storage allocation, tagging compliance, and projected costs.
• The contractor shall advise the Government on workload placement and optimization strategies across IL2, IL4, and IL5 environments to reduce cost while maintaining performance and security compliance.
• The contractor shall provision and maintain IL2, IL4, and IL5 GovCloud infrastructure using native Azure and/or AWS tools where feasible. The contactor shall implement cloud-native services for monitoring (e.g., CloudWatch, Azure Monitor), cost tracking, and compliance automation to support scalability, security, and chargeback alignment.
• The contractor shall provision infrastructure in coordination with other Work Orders.
• The contractor shall provision and manage shared container environments and storage for dependent Work Orders, ensuring secure, efficient resource allocation and cross-Work Order operability.

• Knowledge and capability to design, deploy, and maintain GovCloud-based infrastructures across AWS and Azure, ensuring high availability, scalability, and security for mission-critical applications.
• Required expertise includes cloud architecture, networking, virtualization, containerization, and security best practices, with proficiency in Infrastructure-as-Code (IaC) solutions such as Terraform or AWS CloudFormation.
• Personnel must have experience in hybrid and multi-cloud configurations, including Virtual Private Cloud (VPC) peering, identity management (IAM), and cross-domain solutions.
• Strong expertise in the Authority to Operate (ATO) process is required, including preparing security documentation, conducting compliance assessments, and maintaining continuous monitoring per DoD Risk Management Framework (RMF), NIST 800-53 Rev. 5, FedRAMP, and DoD IL-4/IL-5 security mandates.
• Personnel must also optimize cloud resources for compute, storage, and networking efficiency while ensuring full compliance with DoD governance policies.
• Bachelor's degree in Computer Science, Information Systems, or a related field, or;
• five (5) years of equivalent experience in cloud engineering.
• Personnel must have experience designing, deploying, and managing AWS and Azure cloud environments with a focus on security, automation, and scalability. Required expertise includes Identity and Access Management (IAM), role-based access control (RBAC), Zero Trust Architecture (ZTA), and cloud networking configurations such as VPC peering, subnets, VPNs, and security groups.
• Personnel must demonstrate proficiency in Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, or ARM templates, ensuring secure and scalable deployments. Experience supporting Authority to Operate (ATO) processes is required, including preparing System Security Plans (SSP), Security Assessment Reports (SAR), and Plans of Action & Milestones (POA&M), and maintaining compliance with DoD governance frameworks and NIST requirements.
• Personnel must also collaborate with cybersecurity teams to implement security controls in accordance with FedRAMP, RMF, and DoD IL-4/IL-5 security mandates, while optimizing cloud resource allocation for efficiency., * Preferred certifications include AWS Certified Solutions Architect - Associate, Microsoft Certified: Azure Solutions Architect Expert, and Google Professional Cloud Architect.

Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. We deliver tailored solutions, tested leadership, and trusted results to enable national security missions worldwide.