AWS Cloud Security Engineer
Remote
What You Will Do
We are seeking an AWS Cloud Security Engineer to support a large-scale cloud modernization effort for a federal client. This role will focus on securing AWS environments, strengthening cloud security operations, automating compliance controls, and partnering with engineering teams to ensure secure application delivery.
Responsibilities include:
• Design, implement, and maintain security controls across AWS cloud environments.
• Help safeguard cloud workloads through strong identity management, monitoring, threat detection, and secure operations practices.
• Develop and support secure AWS architectures using services such as IAM, KMS, CloudTrail, AWS Config, and related monitoring tools.
• Implement centralized logging, monitoring, alerting, threat modeling, vulnerability scanning, and penetration testing practices.
• Support alignment with security and compliance frameworks such as CIS Benchmarks, NIST, HIPAA, FedRAMP, and SOC 2.
• Assist with incident detection, investigation, response, and audit trail maintenance across AWS accounts and services.
• Automate security controls and compliance checks using Infrastructure as Code tools such as Terraform and CloudFormation.
• Integrate security into CI/CD pipelines and collaborate with engineering teams to support secure build, deployment, and release processes.
• Review pipeline configurations, validate secrets management practices, support deployment dry runs, and assist with cutover and rollback planning.
What You Will Need
• Must be authorized to work in the U.S. without sponsorship and able to obtain a Public Trust clearance.
• Bachelor’s degree in computer science, cybersecurity, engineering, or a related field; four additional years of relevant experience may be substituted in lieu of a degree.
• Minimum of 6 years of relevant experience in cloud security, cybersecurity, and AWS security.
• Strong hands-on knowledge of AWS services, including EC2, S3, RDS, Lambda, ECS/EKS, CloudFront, Route 53, IAM, CloudTrail, AWS Config, and KMS.
• Experience supporting secure CI/CD pipelines, deployment automation, build troubleshooting, release coordination, and developer enablement.
• Hands-on experience with tools such as GitHub Actions, AWS CodeBuild, ArgoCD, Helm, Docker, secrets management tools, environment configuration, and Terraform templates.
• Experience automating security or compliance workflows using Python, Bash, or similar scripting languages.
• Ability to work independently while collaborating with engineering, DevOps, cloud platform, and security teams.
• Strong problem-solving skills across security, operational, and reliability challenges.
Nice To Have
• AWS Certified Security – Specialty.
• AWS Certified Solutions Architect or AWS Certified DevOps Engineer.
• CISSP, CISM, GIAC, or related cybersecurity certifications.
• Prior experience supporting federal, regulated, or compliance-driven cloud environments.
Ref: #851-Rockville-S1
Every day, System One focuses on services and solutions that require a high degree of specialization, in-demand technical skills, and large-scale operational expertise. We are essential partners to those on the front lines of our nation’s most critical infrastructure, technology, and life sciences initiatives.
Founded more than 40 years ago as a staffing partner to the engineering industry, today System One is a diversified organization operating in over 50 locations and putting more than 9,000 people to work in the United States, Canada, and the United Kingdom.