Job Requirements
Scott Air Force Base, IL
Secret Polygraph not specified
Mid Level Career (5+ yrs experience)
$70,000 - $80,000
Job Description
Job Description
Overview
We are seeking a mission-focused and security-cleared Systems Administrator with deep experience in AWS GovCloud (US) to support classified Department of Defense (DoD) cloud infrastructure. The successful candidate will architect, manage, secure, and maintain resilient systems and services operating within AWS GovCloud, ensuring compliance with DoD regulations and security frameworks.
Responsibilities
• Administer and maintain AWS GovCloud (US) infrastructure supporting DoD classified workloads at IL4/IL5/IL6 levels.
• Ensure full compliance with DoD cybersecurity standards including RMF, DISA STIGs, FedRAMP High, and NIST SP 800-53 controls.
• Design and manage EC2, S3, RDS, IAM, CloudTrail, CloudWatch, VPC configurations, and other AWS GovCloud services in classified environments.
• Implement and enforce Zero Trust Architecture (ZTA) principles within AWS environments, including robust IAM, multi-factor authentication, and role-based access control.
• Manage system patching, backups, logging, and compliance scans using SCAP, ACAS, and other DoD-approved tools.
• Collaborate with Information Assurance teams to support ATO (Authority to Operate) packages, Plan of Action and Milestones (POA&Ms), and continuous monitoring activities.
• Implement logging and alerting using CloudWatch, AWS Config, and Security Hub, integrating with SIEM tools like Splunk or ELK stack as needed.
• Provide Tier 3 support for escalated infrastructure issues; perform root cause analysis and contribute to incident response as required.
• Maintain detailed documentation, diagrams, and SOPs for all AWS GovCloud system operations.
Qualifications
• Active DoD Secret Clearance REQUIRED.
• IAT Level II or III certification (e.g., Security+ CE, CASP+, CISSP) REQUIRED.
• 3+ years of hands-on systems administration experience, with experience managing secure workloads in AWS GovCloud.
• Working knowledge of AWS GovCloud services, including EC2, IAM, S3, RDS, VPC, CloudWatch, and KMS.
• Proficiency in Windows Server environments.
• Understanding of DoD cybersecurity requirements including RMF, DISA STIGs, and NIST 800-53 control families.
• Automation experience with scripting and IaC tools (e.g., Bash, Python, PowerShell, Terraform, CloudFormation).
• Experience with centralized logging, monitoring, and alerting in AWS environments.
• Excellent documentation, communication, and troubleshooting skills.
Preferred (in addition to requirements):
• Experience with IL5/IL6 workloads or classified enclaves in AWS GovCloud.
• Familiarity with AWS Organizations, Service Control Policies (SCPs), in classified environments.
• Knowledge of CCRI, or experience working with DISA and other government assessment teams.
• Exposure to DevSecOps pipelines, CI/CD tools, and containerized deployments (e.g., ECS, EKS).
Overview
We are seeking a mission-focused and security-cleared Systems Administrator with deep experience in AWS GovCloud (US) to support classified Department of Defense (DoD) cloud infrastructure. The successful candidate will architect, manage, secure, and maintain resilient systems and services operating within AWS GovCloud, ensuring compliance with DoD regulations and security frameworks.
Responsibilities
• Administer and maintain AWS GovCloud (US) infrastructure supporting DoD classified workloads at IL4/IL5/IL6 levels.
• Ensure full compliance with DoD cybersecurity standards including RMF, DISA STIGs, FedRAMP High, and NIST SP 800-53 controls.
• Design and manage EC2, S3, RDS, IAM, CloudTrail, CloudWatch, VPC configurations, and other AWS GovCloud services in classified environments.
• Implement and enforce Zero Trust Architecture (ZTA) principles within AWS environments, including robust IAM, multi-factor authentication, and role-based access control.
• Manage system patching, backups, logging, and compliance scans using SCAP, ACAS, and other DoD-approved tools.
• Collaborate with Information Assurance teams to support ATO (Authority to Operate) packages, Plan of Action and Milestones (POA&Ms), and continuous monitoring activities.
• Implement logging and alerting using CloudWatch, AWS Config, and Security Hub, integrating with SIEM tools like Splunk or ELK stack as needed.
• Provide Tier 3 support for escalated infrastructure issues; perform root cause analysis and contribute to incident response as required.
• Maintain detailed documentation, diagrams, and SOPs for all AWS GovCloud system operations.
Qualifications
• Active DoD Secret Clearance REQUIRED.
• IAT Level II or III certification (e.g., Security+ CE, CASP+, CISSP) REQUIRED.
• 3+ years of hands-on systems administration experience, with experience managing secure workloads in AWS GovCloud.
• Working knowledge of AWS GovCloud services, including EC2, IAM, S3, RDS, VPC, CloudWatch, and KMS.
• Proficiency in Windows Server environments.
• Understanding of DoD cybersecurity requirements including RMF, DISA STIGs, and NIST 800-53 control families.
• Automation experience with scripting and IaC tools (e.g., Bash, Python, PowerShell, Terraform, CloudFormation).
• Experience with centralized logging, monitoring, and alerting in AWS environments.
• Excellent documentation, communication, and troubleshooting skills.
Preferred (in addition to requirements):
• Experience with IL5/IL6 workloads or classified enclaves in AWS GovCloud.
• Familiarity with AWS Organizations, Service Control Policies (SCPs), in classified environments.
• Knowledge of CCRI, or experience working with DISA and other government assessment teams.
• Exposure to DevSecOps pipelines, CI/CD tools, and containerized deployments (e.g., ECS, EKS).
group id: 10105424
