General Dynamics Information Technology is a global technology and professional services company. They are seeking a Multi-Cloud Security Engineer to support a FedRAMP-regulated program by securing cloud workloads across various platforms and to enhance security controls in multi-cloud environments.
Responsibilities:
- Implementing and maintaining security configurations, guardrails, and baselines across AWS, Azure, GCP, and OCI
- Building and maintaining security automation using tools such as Terraform, Ansible, CloudFormation, Bicep, or Deployment Manager
- Operating cloud security tooling including SIEM/SOAR platforms, CSPM solutions, vulnerability scanners, key management, and logging/monitoring systems
- Managing IAM, roles, policies, conditional access, and least-privilege models across multiple cloud identity systems
- Implementing FedRAMP and NIST 800-53 security controls within multi-cloud environments; supporting audits and continuous monitoring activities
- Hardening cloud resources including compute, storage, databases, containers, and serverless services
- Working with DevOps and engineering teams to integrate security into CI/CD pipelines
- Conducting vulnerability assessments, patching activities, configuration reviews, and remediation across cloud platforms
Requirements:
- 5 + years of related experience
- hands-on cloud security engineering across at least two major cloud providers
- Strong experience with Linux/Unix, automation, cloud networking, and security tooling is highly beneficial
- Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related technical field or equivalent experience
- Implementing and maintaining security configurations, guardrails, and baselines across AWS, Azure, GCP, and OCI
- Building and maintaining security automation using tools such as Terraform, Ansible, CloudFormation, Bicep, or Deployment Manager
- Operating cloud security tooling including SIEM/SOAR platforms, CSPM solutions, vulnerability scanners, key management, and logging/monitoring systems
- Managing IAM, roles, policies, conditional access, and least-privilege models across multiple cloud identity systems
- Implementing FedRAMP and NIST 800-53 security controls within multi-cloud environments; supporting audits and continuous monitoring activities
- Hardening cloud resources including compute, storage, databases, containers, and serverless services
- Working with DevOps and engineering teams to integrate security into CI/CD pipelines
- Conducting vulnerability assessments, patching activities, configuration reviews, and remediation across cloud platforms
- Security Clearance: Candidate will be subject to a government security investigation and must meet requirements for High-Risk Public Trust access
- one or more advanced certifications relevant to cloud security preferred: AWS Certified Security – Specialty, Microsoft Certified: Cybersecurity Architect Expert, Google Certified Professional Cloud Security Operations Engineer, Oracle Cloud Infrastructure Security Professional
- Additional cloud or security certifications such as CISSP are a plus