Position Overview
Creative Visions is seeking a Cloud Architect to support secure cloud modernization and FedRAMP compliance initiatives for a federal customer. This role focuses on secure AWS cloud architecture, cloud security engineering, continuous monitoring, and automated compliance solutions.
Creative Visions is actively pursuing this federal opportunity. Positions associated with this effort are contingent upon contract award, funding availability, and government approval of proposed personnel. Selected candidates may receive contingent offers of employment pending award and successful completion of applicable clearance and suitability requirements.
Responsibilities
Design and implement secure cloud architectures within AWS environmentsSupport FedRAMP and federal cloud security compliance initiativesDesign continuous monitoring and compliance automation capabilitiesAnalyze security events using Splunk, AWS GuardDuty, Security Hub, and related toolsAssess cloud infrastructure for vulnerabilities and security gapsImplement encryption, segmentation, and secure networking solutionsSupport cloud risk assessments and ATO activitiesCollaborate with DevSecOps and engineering teams on secure cloud deploymentsRequired Qualifications
10+ years of cloud and cloud security experienceNetworking Expertise: Strong knowledge of networking, with a focus on AWS native firewall, AWS Direct Connect, AWS Outposts network configuration, reverse proxy configurations, and related automation. This expertise will be valuable in assessing FedRAMP-specific responses against various controls.Continuous Monitoring (ConMon): Proven ability to design and implement continuous monitoring solutions for cloud systems and applications.AI-Enabled Compliance Automation: Capability to design AI-powered tools that can scan all cloud accounts and VPCs, collect FedRAMP-specific responses, store them in a centralized repository for ConMon, and analyze them to identify unmet requirements.Security Event Analysis: Strong experience in accessing, reviewing, and interpreting reports and alerts generated by SIEM tools such as Splunk.AWS Security Services: Proficient in reviewing and analyzing reports from AWS GuardDuty, Security Hub, and Amazon Inspector, including interpreting compliance and non-compliance metrics such as pie charts.Data Encryption: In-depth understanding of end-to-end data encryption in transit and at rest, including SSL/TLS implementation.Vulnerability Identification: Ability to identify potential vulnerabilities, particularly those related to data or configuration tampering.Education
Masters degree requiredClearance
Public Trust / Suitability Read LessPosition Overview
Creative Visions is seeking a Cloud Security Engineer to support secure DevSecOps, cloud engineering, and cybersecurity automation initiatives within AWS environments supporting federal systems.
Creative Visions is actively pursuing this federal opportunity. Positions associated with this effort are contingent upon contract award, funding availability, and government approval of proposed personnel. Selected candidates may receive contingent offers of employment pending award and successful completion of applicable clearance and suitability requirements.
Responsibilities
Implement secure cloud-native architectures and DevSecOps pipelinesSupport security integration into CI/CD workflowsPerform SAST/DAST and security code reviewsImplement AWS security controls and automationSupport Infrastructure-as-Code (IaC) deploymentsConfigure and manage cloud security technologiesConduct vulnerability analysis and remediation activitiesSupport compliance and authorization activities for cloud systemsRequired Qualifications
Minimum of 5 years of IT experience, demonstrating experience in the following areas: Cloud-native architectures, AWS, VPC, Security Groups, IAM, Docker, KMS, S3 Encryption, RDS Encryption, HTTPS, SSL Certificates, Data Lake security, CloudFormation, CloudFlare, CloudFront, API Gateway, Lambda, Egress proxies, application security, domain segmentation, authentication, data protection, and automation of processes.Experience using AWS Infrastructure-as-Code (IaC), Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS) and Software-as-a-Service (SaaS).Research, Design, Development, Testing and Deployment experience using AWS IaaS, PaaS services, tools and technologies to support continuous integration and delivery on Linux Environment.Demonstrated ability to build and execute complex security plans in AWS.Experience working with compliance and regulatory requirements in AWS.Experience working in a risk-based environment including mitigation, planning, and implementation in AWS.Hands on experience with experience in Splunk, Nessus, Tenable Security Center, and firewall tools such as Palo Alto, Imperva, Fortinet, etc.Education & Certifications
Bachelors degree REQUIREDOne or more REQUIRED:Certified Information Systems Auditor (CISA)Certified in Risk and Information Systems Control (CRISC)Certified Information Security Manager (CISM)Certified in Governance of Enterprise IT (CGEIT)Certified Information Systems Security Professional (CISSP)Certified Authorization Professional (CAP)Clearance
Public Trust / Suitability Read Less