Overview
Steampunk is the explosive collision of human-centered design and traditional government contracting. An employee-owned company with a startup mindset and time-tested approaches tailored for the federal government, we’re passionate about creating solutions that are impactful, practical, scalable, and most importantly, that meet our clients’ ever-changing needs.
At Steampunk, we believe in disrupting the status quo and setting the pace in the ecosystem of government contractors, while repurposing tried-and-true methodologies. We believe in empowering our people to find creative solutions to intractable problems. We believe the best environment in which to grow and thrive is outside our comfort zone.
While good design makes for a good product, we believe human-centered design makes for an excellent one. We also believe effective teams are powered by diverse perspectives, backgrounds, and experiences. To that end, Steampunk is an equal opportunity employer committed to promoting diversity of race, gender, sexual orientation, religion, ethnicity, national origin, disability status, and protected veteran status, amongst our ranks. Additionally, we participate in the E-Verify program.
Contributions
As a Senior Cloud Security Engineer , you will work within our growing DevSecOps practice delivering features to support developing, testing, and monitoring secure cloud architectures for cloud migration, cloud optimization, and cloud deployment. We are looking for candidates with 5-8 years of experience with cloud platform services, cybersecurity, and DevOps practices such as infrastructure as code and configuration management automation. Responsibilities include:
- Identify and implement the most secure cloud-based solutions for the customer including components for zero-trust architectures, identity and access management policy, and data privacy.
- Understand the needs of stakeholders and optimize solutions that marry security with usability.
- Monitor cloud environments for suspicious activities with cloud native monitoring or SIEM solutions and investigate security incidents where appropriate.
- Examine infrastructure as code written by others and analyze risk.
- Ensure that systems are safe and secure against cybersecurity threats through risk assessment, threat modeling, and compliance with industry standards (e.g. NIST, ISO 27011, HIPAA, FISMA, etc.).
- Identify technical problems, perform root cause analysis, and develop updates and ‘fixes’.
- Automate security processes such as vulnerability management and patch management.
- Work with software developers and DevSecOps engineers to ensure that development follows established security processes and works as intended.
- Support enterprise cloud security through infrastructure as code including any activities around automated server or network configurations, large-scale software deployments, and monitoring and testing.
- Ensure effective design and implementation of data protection and encryption mechanisms for data at rest and in transit.
- Document as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations.
- Identify, analyze, and resolve infrastructure vulnerabilities and application deployment issues.
- Act as an individual contributor and mentor more junior team members.
- Engineer and implement solutions and provide recommendations for continuous improvement for the services provided.
- Present regular status updates and provide cross training to other team members.
Qualifications
Required:
- Ability to obtain a U.S. government Security Clearance.
- BS Degree in an IT field OR BS in a non-IT field and 2 years related IT experience.
- 5 Years of Experience architecting, designing, developing, and implementing cloud solutions.
- 5 Years of Experience with one or more clouds (i.e. AWS, Azure, or GCP).
- 5 Years of Experience with Git SCM providers such as GitHub, GitLab, Bitbucket.
- 5 Years of Experience with systems development in an Agile environment.
- 5 Years of Experience implementing infrastructure as code and orchestration.
- 5 Years of Experience conducting monitoring, risk assessment, threat modeling, and security testing in cloud environments.
- 5 Years of Experience documenting POAMs, SSPs, and A&A support documentation.
- Experience with AWS and Azure.
Preferred:
- Certifications:
- AWS Certified Security Specialty.
- AWS Certified Solutions Architect Associate.
- Microsoft Certified Azure Administrator Associate.
- Certified Information Systems Security Professional (CISSP).
- Excellent written and verbal communication skills, interpersonal and collaborative skills.
- Experience with documenting an as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations preferred.
- Experience with scripting in Concourse, Bash, PowerShell, Python, Groovy, or Ruby.
- Experience with automation tools, including Pivotal, Chef, Terraform, CloudFormation, or Ansible.
About Steampunk
Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $130,000 to $180,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk’s total compensation package for employees. Learn more about additional Steampunk benefits here.
Steampunk is a Change Agent in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health, and DoD sectors. Through our Human-Centered delivery methodology , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an employee-owned company , we focus on investing in our employees to enable them to do the greatest work of their careers – and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit Steampunk .
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program.
#J-18808-Ljbffr