Job Requirements
Bethesda, MD
Top Secret/SCI Polygraph
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Location: Bethesda, MD
Category: Cyber Security Architecture and Engineering
Travel Required: No
Remote Type: No
Clearance: TS/SCI
Sunayu, LLC has an exciting opening for you as a Cloud Security SME & Cyber Security Engineer, you will be responsible for providing technical security expertise in securing, hardening, and maintaining compliance of cloud-based platforms across multiple secure networks. You will lean on your experience with security technologies, industry best practices, vulnerability management, and risk management frameworks (RMF) to employ effective security solutions. In this role, you will collaborate closely with compliance personnel (ISSO, ISSM), software engineers and developers, system engineers and architects, and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to ensure our systems securely meet mandated regulatory compliance frameworks.
Key Responsibilities include:
Develop and maintain security policies, procedures, and best practices for cloud and cloud-native environments
Perform security assessments, vulnerability management, and risk analysis for cloud-based systems across secure enclaves
Implement and manage security controls for Kubernetes clusters and containerized applications
Ensure integration of security measures into CI/CD pipelines and DevSecOps processes
Conduct security reviews of cloud architectures, service configurations, and system design changes
Develop and maintain ATO packages and ensure compliance with relevant standards (NIST SP 800-37, SP 800-53, CNSSI 1253, ICD 503)
Implement and manage continuous monitoring solutions for cloud environments
Collaborate with development teams to ensure secure coding practices and perform code reviews
Stay current with emerging cloud security threats, technologies, and best practices
To be successful in this role you need these skills (required):
Active or current Top Secret with SCI eligibility and ability to obtain Polygraph
Bachelor's degree in a related field and 8+ years of industry experience with 5+ years in cybersecurity or additional years of experience in lieu of degree (ISSO experience must be supplemented with demonstrated technical expertise)
At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, CISSP (or Associate)
5+ years working in the cloud, securely configuring and deploying AWS services
Demonstrated experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; must understand microservices architecture and service mesh.
5+ years of experience hardening Linux hosts and applying appropriate DISA STIG
Demonstrated experience developing A&A packages to obtain and maintain ATO in secure environments. Grounded knowledge in compliance frameworks such as NIST SP 800-37, SP 800-53, and CNSSI 1253
Experience with tools such as Xacta or eMass, performing vulnerability compliance with ACAS, & STIG automation
Experience with scripting languages such as Bash and Python for automation
Understanding of secure software development practices and code reviews
Experience with encryption and transport, especially in the cloud
You will WOW us even more if you have some of these skills:
Multiple IAT/IAM II or III advanced certifications (e.g. CISSP-ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)
Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security Specialty
Kubernetes certifications such as KCNA, CKA, CKS
Prior Linux administration experience and certifications such as Linux+, Red Hat certifications (e.g. RHCSA, RHCE)
Experience with ICD 503 and related compliance directives, policies, procedures
Experience with security tool such as Splunk, Nessus, SonarQube, as well as DAST & SAST tools such as Prisma Cloud and SonarQube
Experience applying Zero Trust framework to secure systems
Prior network engineering experience
Experience applying security controls to Generative AI implementations
Who We Are
Sunayu, LLC serves as a premier technology partner to the Defense and Intelligence communities, delivering mission-critical engineering solutions across the nation. Our operations are anchored in a commitment to trust, accountability, and ethical transparency, ensuring the high-performance outcomes necessary to protect our country's most vital interests.
Culture
Our strength lies in our community: Our team prioritizes collaboration, professional growth, and encourages open communication. At Sunayu, we don't just secure the mission-we grow together.
Career Development
We support and encourage our team members to continue their professional growth by providing company-reimbursed training and continuing education of up to $5,000 per year. We also participate in many industry conferences and events where we share our expertise and experiences.
Pay Rate
Salary range considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills, as well as market and business considerations when extending an offer.
Benefits
Equal Opportunity Employer
Sunayu, LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran status, disability status, marital status, genetic information, medical condition, or any other characteristic protected by law.
Category: Cyber Security Architecture and Engineering
Travel Required: No
Remote Type: No
Clearance: TS/SCI
Sunayu, LLC has an exciting opening for you as a Cloud Security SME & Cyber Security Engineer, you will be responsible for providing technical security expertise in securing, hardening, and maintaining compliance of cloud-based platforms across multiple secure networks. You will lean on your experience with security technologies, industry best practices, vulnerability management, and risk management frameworks (RMF) to employ effective security solutions. In this role, you will collaborate closely with compliance personnel (ISSO, ISSM), software engineers and developers, system engineers and architects, and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to ensure our systems securely meet mandated regulatory compliance frameworks.
Key Responsibilities include:
Develop and maintain security policies, procedures, and best practices for cloud and cloud-native environments
Perform security assessments, vulnerability management, and risk analysis for cloud-based systems across secure enclaves
Implement and manage security controls for Kubernetes clusters and containerized applications
Ensure integration of security measures into CI/CD pipelines and DevSecOps processes
Conduct security reviews of cloud architectures, service configurations, and system design changes
Develop and maintain ATO packages and ensure compliance with relevant standards (NIST SP 800-37, SP 800-53, CNSSI 1253, ICD 503)
Implement and manage continuous monitoring solutions for cloud environments
Collaborate with development teams to ensure secure coding practices and perform code reviews
Stay current with emerging cloud security threats, technologies, and best practices
To be successful in this role you need these skills (required):
Active or current Top Secret with SCI eligibility and ability to obtain Polygraph
Bachelor's degree in a related field and 8+ years of industry experience with 5+ years in cybersecurity or additional years of experience in lieu of degree (ISSO experience must be supplemented with demonstrated technical expertise)
At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, CISSP (or Associate)
5+ years working in the cloud, securely configuring and deploying AWS services
Demonstrated experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; must understand microservices architecture and service mesh.
5+ years of experience hardening Linux hosts and applying appropriate DISA STIG
Demonstrated experience developing A&A packages to obtain and maintain ATO in secure environments. Grounded knowledge in compliance frameworks such as NIST SP 800-37, SP 800-53, and CNSSI 1253
Experience with tools such as Xacta or eMass, performing vulnerability compliance with ACAS, & STIG automation
Experience with scripting languages such as Bash and Python for automation
Understanding of secure software development practices and code reviews
Experience with encryption and transport, especially in the cloud
You will WOW us even more if you have some of these skills:
Multiple IAT/IAM II or III advanced certifications (e.g. CISSP-ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)
Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security Specialty
Kubernetes certifications such as KCNA, CKA, CKS
Prior Linux administration experience and certifications such as Linux+, Red Hat certifications (e.g. RHCSA, RHCE)
Experience with ICD 503 and related compliance directives, policies, procedures
Experience with security tool such as Splunk, Nessus, SonarQube, as well as DAST & SAST tools such as Prisma Cloud and SonarQube
Experience applying Zero Trust framework to secure systems
Prior network engineering experience
Experience applying security controls to Generative AI implementations
Who We Are
Sunayu, LLC serves as a premier technology partner to the Defense and Intelligence communities, delivering mission-critical engineering solutions across the nation. Our operations are anchored in a commitment to trust, accountability, and ethical transparency, ensuring the high-performance outcomes necessary to protect our country's most vital interests.
Culture
Our strength lies in our community: Our team prioritizes collaboration, professional growth, and encourages open communication. At Sunayu, we don't just secure the mission-we grow together.
Career Development
We support and encourage our team members to continue their professional growth by providing company-reimbursed training and continuing education of up to $5,000 per year. We also participate in many industry conferences and events where we share our expertise and experiences.
Pay Rate
Salary range considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills, as well as market and business considerations when extending an offer.
Benefits
- 3 Medical Plan Options
- Dental and Vision
- FSA, DCFSA, HSA
- Life/AD&D Insurance
- Short-Term & Long-Term Disability
- Employee Assistance Program (EAP)
- Training and Educational Assistance
- Paid Time Off (PTO)
- 11 Federal holidays
- 401k plan with up to a 6% match (100% immediate vesting)
Equal Opportunity Employer
Sunayu, LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran status, disability status, marital status, genetic information, medical condition, or any other characteristic protected by law.
group id: 90958040
