Cloud Security Engineer

Zachary Piper Solutions is seeking a Cloud Security Engineer to support a secure client at Hill AFB in Utah for a fully onsite role. The Cloud Security Engineer will directly contribute towards modernizing legacy USAF network infrastructure and migrating services into a new AWS Cloud Environment.

Responsibilities of the Cloud Security Engineer:

• Implement and manage Secure Cloud Computing Architecture (SCCA) controls, including VDSS and BCAP.
• Ensure DoD cloud compliance with frameworks like NIST, STIGs, and FedRAMP+; support ATO documentation and eMASS submissions.
• Manage Trusted Cloud Credential Management (TCCM) for secure identity access; configure and maintain cloud security services (SolarWinds, ELK, CSP tools).
• Support cloud onboarding/migration with security best practices; collaborate to enforce Zero Trust principles.
• Provide cloud security guidance, mentor junior staff, and maintain documentation for inherited controls.

Qualifications for the Cloud Security Engineer:

• 7+ years cloud security experience with hands-on work in OCI, Azure, or AWS; strong troubleshooting/problem-solving skills.
• Bachelor's degree in CS, Cybersecurity, Info Systems, or equivalent experience
• Expertise in IAM, logging, monitoring, incident management, vulnerability assessments, and compliance processes.
• Solid understanding of DoD security standards (NIST 800-53, STIGs, FedRAMP+); proficiency with Terraform, Ansible, PowerShell.
• CompTIA Security+ certification.
• Active DoD Secret clearance or the ability to obtain one.

Compensation for the Cloud Security Engineer:

• Salary Range: $128,000 - $138,000 *depending on experience*
• Comprehensive Benefits: Cigna Medical, Dental, Vision, 401k Plan, PTO, Holidays, Sick Leave if required by law

This job opens for applications on12/18. Applications for this job will be accepted for at least 30 days from the posting date.

#LI-MS1

#LI-ONSITE

Keywords: Secure Cloud Computing Architecture, SCCA, Virtual Data Center Security Stack, VDSS, Boundary Cloud Access Point, BCAP, Trusted Cloud Credential Management, TCCM, Zero Trust, cloud security, DoD compliance, NIST 800-53, STIGs, FedRAMP+, ATO, eMASS, inherited controls, cloud onboarding, cloud migration, identity and access management, IAM, credential management, security monitoring, alerting, logging, SolarWinds, ELK stack, CSP security tools, AWS, Azure, OCI, cloud service providers, cloud configuration, automation, Terraform, Ansible, PowerShell, vulnerability assessments, incident management, troubleshooting, problem-solving, security frameworks, security best practices, cloud compliance, cloud architecture, cloud security services, security documentation, mentoring, cybersecurity, information systems, CompTIA Security+, DoD Secret clearance, cloud credential security, security controls, security stack, security principles, security governance, security operations, cloud infrastructure, cloud security posture, security auditing, security risk management, cloud security engineering, cloud security architecture