{"id":735,"date":"2025-12-04T11:07:53","date_gmt":"2025-12-04T11:07:53","guid":{"rendered":"https:\/\/skillbasedmatching.com\/jobs\/?post_type=jobpost&#038;p=735"},"modified":"2025-12-04T11:07:56","modified_gmt":"2025-12-04T11:07:56","slug":"cybersecurity-engineer-dod-cloud-architect-rmf-specialist","status":"publish","type":"jobpost","link":"https:\/\/skillbasedmatching.com\/jobs\/current-jobs\/cybersecurity-engineer-dod-cloud-architect-rmf-specialist\/","title":{"rendered":"Cybersecurity Engineer \u2013 DoD Cloud Architect &#038; RMF Specialist"},"content":{"rendered":"\n<p>\u200bThis is a full-time, <strong>100% remote<\/strong> <strong>Cybersecurity Engineer<\/strong> role responsible for the comprehensive design, development, and integration of secure architectures for <strong>Military OneSource<\/strong> environments. The engineer ensures strict compliance with DoD and federal security frameworks, with a strong emphasis on <strong>AWS GovCloud<\/strong> and the <strong>Risk Management Framework (RMF)<\/strong> process.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Location:<\/strong> Remote (United States).<\/li>\n\n\n\n<li>\u200b<strong>Clearance:<\/strong> <strong>Active Secret clearance is required.<\/strong><\/li>\n\n\n\n<li>\u200b<strong>Certification (Required):<\/strong> DoD 8570 certification at <strong>IAT Level III or IAM Level III<\/strong> (e.g., CASP+ CE, CISSP, CISM, CCSP).<\/li>\n\n\n\n<li>\u200b<strong>Experience:<\/strong> Bachelor\u2019s Degree and a minimum of <strong>five years of experience<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Focus:<\/strong> Designing secure AWS GovCloud architectures (IL4\/IL5), implementing AWS-native security services, managing RMF artifacts (SSPs, POA&amp;Ms), and ensuring compliance with DoD SRG, FedRAMP, and NIST 800-53.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bResponsibilities &amp; Expertise: Architecture, Compliance, and Cloud Security<\/h2>\n\n\n\n<p>\u200bThe engineer acts as a core security architect, ensuring functional and compliant operation across hybrid cloud infrastructures.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bCloud Architecture &amp; Implementation<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Design &amp; Development:<\/strong> Develop and design secure and functional system architectures for on-premises and cloud environments, focusing on <strong>AWS GovCloud<\/strong> and <strong>FedRAMP-authorized services<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>AWS Security Services:<\/strong> Implement and manage native AWS security services: <strong>Security Hub, GuardDuty, Inspector, CloudTrail, CloudWatch, Macie, Config, and IAM Access Analyzer<\/strong> to detect, monitor, and remediate risks.<\/li>\n\n\n\n<li>\u200b<strong>Cryptography:<\/strong> Manage <strong>cryptographic key generation<\/strong> and lifecycle operations within <strong>AWS KMS<\/strong> and other approved key management systems, ensuring <strong>FIPS 140-3 encryption<\/strong> compliance.<\/li>\n\n\n\n<li>\u200b<strong>Detection:<\/strong> Design and oversee <strong>intrusion detection and prevention architectures<\/strong>, leveraging AWS-native and DoD-approved tools (<strong>ACAS, HBSS, IDS\/IPS<\/strong>).<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bCompliance &amp; Documentation<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>RMF &amp; FedRAMP:<\/strong> Ensure full compliance with <strong>DoD Instruction 8510.01 (RMF for DoD IT)<\/strong>, <strong>FedRAMP Moderate\/High<\/strong>, and <strong>NIST SP 800-53 Rev 5<\/strong> baselines.<\/li>\n\n\n\n<li>\u200b<strong>Assessments:<\/strong> Conduct comprehensive system security, vulnerability, and <strong>Privacy Impact Assessments (PIAs)<\/strong>. Evaluate inherited and shared controls from cloud service providers.<\/li>\n\n\n\n<li>\u200b<strong>Artifacts:<\/strong> Produce and maintain technical documentation, including <strong>RMF artifacts, SSPs (System Security Plans), SARs, POA&amp;Ms<\/strong>, and PIAs.<\/li>\n\n\n\n<li>\u200b<strong>Continuous Monitoring (ConMon):<\/strong> Support ConMon activities through integration of <strong>ACAS<\/strong> scan results, AWS security alerts, and event-driven reporting.<\/li>\n\n\n\n<li>\u200b<strong>Privacy Standards:<\/strong> Research and apply privacy standards, including <strong>HIPAA<\/strong> and the <strong>Privacy Act of 1974<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Zero Trust:<\/strong> Direct installation and configuration of security solutions, ensuring compliance with <strong>Zero Trust principles<\/strong>.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bRequired Qualifications<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Clearance &amp; Citizenship:<\/strong> Active <strong>Secret clearance<\/strong> and <strong>U.S. Citizenship<\/strong> are mandatory.<\/li>\n\n\n\n<li>\u200b<strong>Certification:<\/strong> DoD 8570 certification at <strong>IAT Level III or IAM Level III<\/strong> (e.g., CISSP, CISM).<\/li>\n\n\n\n<li>\u200b<strong>Experience:<\/strong> <strong>Proven experience designing and implementing secure AWS architectures compliant with FedRAMP and DoD SRG IL4\/IL5 requirements.<\/strong><\/li>\n\n\n\n<li>\u200b<strong>Technical Tools:<\/strong> Demonstrated expertise using AWS security services (listed above). Proficiency in vulnerability management and continuous monitoring tools (<strong>ACAS, Nessus, Splunk<\/strong>).<\/li>\n\n\n\n<li>\u200b<strong>Frameworks:<\/strong> Strong working knowledge of <strong>FedRAMP, NIST SP 800-53 Rev 5, DoD Cloud Computing SRG, and RMF processes.<\/strong><\/li>\n\n\n\n<li>\u200b<strong>Communication:<\/strong> Excellent communication and technical writing skills for preparing compliance documentation.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>\u200bThis is a full-time, 100% remote Cybersecurity Engineer role responsible for the comprehensive design, development, and integration of secure architectures for Military OneSource environments. The engineer ensures strict compliance with DoD and federal security frameworks, with a strong emphasis on AWS GovCloud and the Risk Management Framework (RMF) process. \u200bResponsibilities &amp; Expertise: Architecture, Compliance, and [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[1224,43],"jobpost_job_type":[39],"jobpost_location":[1041],"jobpost_tag":[3106,3427,164,3402,2231,3210,1587,1553,3431,3429,3428,1231,81,3430,3432,1940],"class_list":["post-735","jobpost","type-jobpost","status-publish","hentry","jobpost_category-cloud-engineer","jobpost_category-it","jobpost_job_type-remote","jobpost_location-united-states","jobpost_tag-acas","jobpost_tag-active-secret-clearance","jobpost_tag-aws-govcloud","jobpost_tag-cism","jobpost_tag-cissp","jobpost_tag-cybersecurity-engineer","jobpost_tag-dod-rmf","jobpost_tag-fedramp","jobpost_tag-guardduty","jobpost_tag-iam-level-iii","jobpost_tag-iat-level-iii","jobpost_tag-nist-800-53","jobpost_tag-remote","jobpost_tag-security-hub","jobpost_tag-system-security-plan-ssp","jobpost_tag-zero-trust"],"_links":{"self":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost\/735","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/users\/1"}],"wp:attachment":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/media?parent=735"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_category?post=735"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_job_type?post=735"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_location?post=735"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_tag?post=735"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}