Cloud Security Engineer

Posted 1 day ago Top Secret Senior Level Career (10+ yrs experience) $160,000

• $200,000 IT
• Security Huntsville, AL
• Reston, VA
• Washington, DC
• Tampa, FL
• Colorado Springs, CO AWS Cloud Platform & Security Engineer (Top Secret)

Location:

Huntsville, AL•

Redstone Arsenal Clearance:

Active Top Secret required

Relocation:

$3,000 relocation stipend available Role Overview We are seeking an experienced AWS Cloud Platform & Security Engineer to design, secure, and operate mission‑critical cloud environments supporting government programs at Redstone Arsenal. This role blends AWS platform engineering, cloud security, DevSecOps automation, and Linux-based tooling, with a strong emphasis on building secure, scalable, and resilient cloud foundations. You will play a key role in establishing AWS secure baselines, automating infrastructure and security controls, and leading application migrations from on‑prem environments to AWS. What You'll Do Design and build secure AWS cloud platforms and service delivery patterns, primarily across PaaS and IaaS Establish AWS secure baselines / landing zones, including guardrails, governance standards, and baseline architectures Automate infrastructure and security controls using DevSecOps practices, Infrastructure as Code (IaC), and CI/CD pipelines Assess existing applications and lead migrations from on‑prem to AWS (rehost, replatform, refactor) Integrate security controls into CI/CD pipelines, including IaC scanning, secrets detection, and policy enforcement Design architectures for high availability (HA), disaster recovery (DR), and cost optimization Develop and maintain Linux-based automation and security tooling supporting enterprise cybersecurity infrastructure Partner with engineering, security, and operations teams to ensure compliance and mission readiness Required Qualifications Active Top Secret clearance Strong hands-on experience designing and securing AWS cloud environments Experience building and enforcing cloud security guardrails and governance Proficiency with Infrastructure as Code (Terraform, CloudFormation, and/or CDK) Experience with CI/CD pipelines and DevSecOps automation Solid Linux administration background with automation/scripting experience Experience supporting or executing on‑prem to AWS migrations Understanding of HA/DR architectures and AWS cost optimization strategies Preferred / Nice to Have AWS certifications (Solutions Architect, Security Specialty, DevOps Engineer) Scripting experience with Python and/or Bash Experience with security tooling such as CSPM, policy-as-code, or compliance automation Experience in classified or regulated environments The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future. We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note:

Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law. This job is not eligible for bonuses, incentives or commissions. Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. By clicking “Apply Today” you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.

group id:

kforcecx N Name Hidden Talent Associate Apply now