Today
Top Secret/SCI
Senior Level Career (10+ yrs experience)
$180,000 - $225,000
IT - Security
We are seeking an experienced Defensive Cyber Operations Engineer to lead the design, implementation, and automation of advanced cybersecurity capabilities across AWS environments. This role will focus on strengthening cloud security posture through proactive monitoring, automated response, and compliance alignment with NIST standards. The ideal candidate will have a strong background in AWS security services, SIEM integration, and cloud-based defensive operations.
Key Responsibilities
Implement and manage defensive cyber operations within AWS environments to protect against emerging threats and vulnerabilities.
Configure and enforce Service Control Policies (SCPs) to maintain least-privilege and compliance-based access controls.
Deploy, configure, and optimize AWS Security Hub and GuardDuty in alignment with NIST 800-53 and organizational compliance frameworks.
Design and deploy OpenSearch-based SIEM solutions to provide centralized log collection, correlation, and real-time threat detection.
Develop and automate incident response playbooks using Infrastructure as Code (IaC) and AWS-native tooling to enable rapid and consistent remediation.
Create and execute attack simulation scenarios as code to support red/blue team exercises and enhance operational readiness.
Collaborate with security, DevOps, and compliance teams to ensure AWS environments adhere to best practices for secure architecture and continuous monitoring.
Document configurations, controls, and procedures to support audits, accreditation, and ongoing security assessments.
Required Skills & Qualifications
CompTIA Security+ Certification (required)
AWS Certified Solutions Architect – Associate (required)
AWS Certified Security – Specialty (preferred)
Strong experience with AWS security services, including GuardDuty, Security Hub, IAM, CloudTrail, and Config
Proficiency in OpenSearch (formerly ELK) for SIEM deployment and tuning
Experience with Infrastructure as Code (IaC) frameworks such as AWS CDK, Terraform, or CloudFormation
Deep understanding of NIST 800-53 security and compliance controls
Proven ability to design and implement incident response automation and threat simulation exercises in cloud environments
Strong analytical and problem-solving skills with attention to operational security details
Preferred Qualifications
Experience with threat detection and response in enterprise or government AWS environments
Familiarity with SOC operations, DevSecOps pipelines, and cloud-native monitoring tools
Excellent communication skills and ability to collaborate across multidisciplinary security and engineering teams
Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Requires active TS/SCI Clearance.
Compensation and Benefits
Salary Range: $180,000 - $225,000 (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.)
Benefits: Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full-time and part-time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron’s benefits programs.
Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.
Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations.
Key Responsibilities
Implement and manage defensive cyber operations within AWS environments to protect against emerging threats and vulnerabilities.
Configure and enforce Service Control Policies (SCPs) to maintain least-privilege and compliance-based access controls.
Deploy, configure, and optimize AWS Security Hub and GuardDuty in alignment with NIST 800-53 and organizational compliance frameworks.
Design and deploy OpenSearch-based SIEM solutions to provide centralized log collection, correlation, and real-time threat detection.
Develop and automate incident response playbooks using Infrastructure as Code (IaC) and AWS-native tooling to enable rapid and consistent remediation.
Create and execute attack simulation scenarios as code to support red/blue team exercises and enhance operational readiness.
Collaborate with security, DevOps, and compliance teams to ensure AWS environments adhere to best practices for secure architecture and continuous monitoring.
Document configurations, controls, and procedures to support audits, accreditation, and ongoing security assessments.
Required Skills & Qualifications
CompTIA Security+ Certification (required)
AWS Certified Solutions Architect – Associate (required)
AWS Certified Security – Specialty (preferred)
Strong experience with AWS security services, including GuardDuty, Security Hub, IAM, CloudTrail, and Config
Proficiency in OpenSearch (formerly ELK) for SIEM deployment and tuning
Experience with Infrastructure as Code (IaC) frameworks such as AWS CDK, Terraform, or CloudFormation
Deep understanding of NIST 800-53 security and compliance controls
Proven ability to design and implement incident response automation and threat simulation exercises in cloud environments
Strong analytical and problem-solving skills with attention to operational security details
Preferred Qualifications
Experience with threat detection and response in enterprise or government AWS environments
Familiarity with SOC operations, DevSecOps pipelines, and cloud-native monitoring tools
Excellent communication skills and ability to collaborate across multidisciplinary security and engineering teams
Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Requires active TS/SCI Clearance.
Compensation and Benefits
Salary Range: $180,000 - $225,000 (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.)
Benefits: Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full-time and part-time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron’s benefits programs.
Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.
Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations.
group id: 91017793
