Cloud Architect ? DOJ Federal Bureau of Prisons, IT CSSS Contract
Location: 320 First Street NW, Washington, DC 20534 (On-site)
Contract: DOJ BOP IT Consolidated Security Support Services (IT CSSS)
RFQ: 15BPCC26Q00000029
Positions: 1 Key Personnel
?? Mandatory Requirements
- U.S. Citizenship Required
- Public Trust + Suitability Clearance Required
- Must pass DOJ background investigation and drug testing
- Master's Degree Required (Cybersecurity, Cloud Computing, Computer Science, or related field)
- 10 years of experience in cloud and cloud security solutions in FEDERAL GOVERNMENT systems
Position Overview
Designs and oversees the cloud security architecture for BOP's multi-cloud environment, with depth in AWS. Builds AI-enabled compliance automation, continuous monitoring solutions, and FedRAMP-aligned controls. Acts as the senior technical voice for cloud security strategy.
Key Responsibilities
- Architect cloud security solutions across AWS (and multi-cloud as required) for BOP federal systems
- Design and implement continuous monitoring (ConMon) for cloud systems and applications
- Build AI-powered compliance tooling that scans cloud accounts and VPCs, collects FedRAMP-specific responses, and identifies unmet controls
- Define cloud security controls aligned to NIST, FedRAMP, CIS, AWS, and Azure best practices
- Review and interpret reports from AWS GuardDuty, Security Hub, Amazon Inspector, and Splunk
- Architect AWS Direct Connect, AWS Outposts, native firewall, and reverse-proxy configurations
- Lead end-to-end data encryption design (in transit and at rest), including SSL/TLS implementation
- Identify vulnerabilities, particularly data or configuration tampering risks
Required Technical Skills
- Strong AWS networking expertise: native firewall, Direct Connect, Outposts, reverse proxies
- Proven design and implementation of continuous monitoring for cloud systems
- Capability to design AI-powered tools that scan cloud accounts/VPCs and identify control gaps
- Strong experience interpreting Splunk SIEM reports and alerts
- Proficient with AWS GuardDuty, Security Hub, and Amazon Inspector
- Deep understanding of end-to-end data encryption (SSL/TLS, KMS)
Preferred Certifications
- AWS Solutions Architect Professional
- AWS Security Specialty
- CCSP, CISSP
Preferred (Differentiators)
- Prior DOJ or BOP experience and domain knowledge
- FedRAMP authorization experience (SaaS, PaaS, IaaS)
- Multi-cloud (Azure, Google Cloud Platform) in addition to AWS depth
- Hands-on with AI/ML-based compliance automation tools
Work Environment
This is an on-site position at DOJ Bureau of Prisons headquarters in Washington, DC. The role requires daily physical presence due to the sensitive nature of federal security systems.
Compensation
W2 Salary: $200,000 ? $250,000/year
C2C Rate: ~$135/hour
?? Key Personnel Notice
This position is designated as Key Personnel under the DOJ BOP IT CSSS contract. The selected candidate will be named in the proposal and is expected to remain on the contract for its duration. Substitution requires government approval.
Innosoft Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.