AWS Lambda, Amazon CloudFront, Amazon Simple Storage Service (S3), Amazon Web Services (AWS), Application Programming Interface (API), CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Cloud Computing, Computer Science, Continuous Deployment/Delivery, Continuous Integration, Cryptography, Customer Support/Service, Docker, FISMA - Federal Information Security Management Act, Federal Bureau of Prisons, Federal Compliance Regulations, Federal Government, Information Technology & Information Systems, Internet Security, Maintain Compliance, Nessus, Protective Services, Request for Proposals (RFP), Security Compliance, Security Monitoring, Software Development Lifecycle (SDLC), Software Engineering, Splunk, Technical Support, Test Automation, U.S. National Institute of Standards and Technology (NIST), United States Department of Justice (DOJ)
Cloud Security Engineer / DevSecOps III
Department of Justice – Federal Bureau of Prisons
IT Consolidated Support Services Solutions (IT CSSS)
Location: 320 First Street NW, Washington, DC 20534 (On-site)
Employment Type: Full-Time | Positions: 1
Position Overview
Innosoft Corporation is seeking a Cloud Security Engineer / DevSecOps III to serve as a hands-on AWS security engineer supporting the Bureau of Prisons (BOP) cloud environment. This role integrates security into CI/CD pipelines, ensures compliance with federal security standards, and provides DevSecOps expertise for the BOP's cloud infrastructure.
Key Responsibilities
- Serve as the hands-on AWS security engineer for the BOP cloud environment
- Integrate security into CI/CD pipelines and automate security testing
- Implement and manage AWS security services (VPC, Security Groups, IAM, KMS, S3/RDS encryption)
- Deploy and manage infrastructure as code using AWS CloudFormation
- Configure and manage security monitoring tools (Splunk, Nessus/Tenable, Palo Alto, Imperva, Fortinet)
- Implement SAST/DAST security scanning in development workflows
- Manage containerized environments using Docker
- Support CloudFront, Lambda, and API Gateway security configurations
- Ensure compliance with FISMA, NIST 800-53, and federal cloud security requirements
- Collaborate with development and operations teams to embed security throughout the SDLC
Critical Requirements
THE FOLLOWING REQUIREMENTS ARE MANDATORY – CANDIDATES WHO DO NOT MEET ALL OF THESE WILL NOT BE CONSIDERED:
- U.S. Citizenship – MANDATORY (no exceptions, federal contract requirement)
- Public Trust Clearance with Suitability – REQUIRED (must be obtainable/active)
- Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or related field – REQUIRED
- Minimum 5 years of IT experience – REQUIRED
- At least ONE active certification from: CISA, CRISC, CISM, CGEIT, CISSP, or CAP – REQUIRED
Required Technical Skills
- AWS Cloud Security: VPC, Security Groups, IAM, KMS, S3/RDS Encryption, CloudFormation, CloudFront, Lambda, API Gateway
- Security Tools: Splunk, Nessus, Tenable, Palo Alto, Imperva, Fortinet
- DevSecOps: CI/CD Pipeline Security Integration, SAST/DAST Scanning
- Containerization: Docker
- Compliance: FISMA, NIST 800-53, Federal Cloud Security Standards
Preferred Qualifications
- Terraform experience for infrastructure as code
- Kubernetes / Amazon EKS experience
- FedRAMP compliance experience
- Experience with federal government cloud security environments
Compensation
Salary Range: $150,000 – $185,000 annually (based on experience and qualifications)
C2C Rate: $100/hr
About This Opportunity
This position supports the DOJ Federal Bureau of Prisons IT CSSS contract (RFQ #15BPCC26Q00000029). The selected candidate will work on-site at BOP headquarters in Washington, DC, providing critical cloud security and DevSecOps support for federal corrections IT systems.
Innosoft Corporation is an Equal Opportunity Employer.