Cloud Engineer Senior Principal

$160,001 - $160,001/Yr

SAIC - Washington, DC

posted 4 months ago

Full-time - Senior
Onsite - Washington, DC
Professional, Scientific, and Technical Services

About the position

SAIC is seeking a Cloud Engineer Senior Principal role in support of our Department of Transportation (DOT) contract for EITSS Infrastructure support. This position is currently a hybrid role, requiring the candidate to work at DOT HQ in Washington, DC two days a week, with the potential to change to a full five days. As a Cloud Engineer, you will leverage your extensive experience to architect, build, and design solutions that integrate public Cloud services. You will utilize techniques such as Infrastructure as Code to ensure the repeatable deployment of resources. Your expertise in Cloud reference architectures and solutions will be crucial in supporting software development within a DevOps environment. Excellent troubleshooting skills, a commitment to staying current with industry trends, and a collaborative team spirit are essential for success in this role. Your core responsibilities will include creating and updating cloud environment configurations to establish and support application workloads. This includes Azure-focused tasks such as configuring subscriptions, resource groups, VNets, subnets, load balancers, App Services, Azure Batch, Virtual Machines, resource tagging, billing, policy implementation, and security controls. For AWS, you will configure AWS accounts, IAM users and roles, VPCs, subnets, load balancers, network routes, Transit Gateway, Control Tower, Systems Manager, Config Manager, stack sets, WAF, CloudFront, and Route53. You will also be responsible for understanding shell scripting and executing commands via the command line, designing and building automation platforms utilizing Infrastructure as Code methodologies, and supporting operational requests while communicating status to the cloud leadership team. Additionally, you will identify and communicate opportunities for improving the agency's security posture within cloud environments, collaborate with external development teams to understand cloud workload solution architecture, and provide technical, managerial, and administrative direction for problem definition, analysis, requirements development, and implementation for complex systems within cloud infrastructure. Troubleshooting cloud performance issues and analyzing network traffic for capacity planning solutions will also be part of your role.

Responsibilities

  • Create and update cloud environment configurations to support application workloads.
  • Configure Azure subscriptions, resource groups, VNets, subnets, load balancers, App Services, Azure Batch, Virtual Machines, resource tagging, billing, policy implementation, and security controls.
  • Configure AWS accounts, IAM users and roles, VPCs, subnets, load balancers, network routes, Transit Gateway, Control Tower, Systems Manager, Config Manager, stack sets, WAF, CloudFront, and Route53.
  • Understand shell scripting and execute commands via the command line.
  • Design and build automation platforms utilizing Infrastructure as Code methodologies, preferably with CloudFormation and/or Terraform, PowerShell, and Python.
  • Support operational requests and communicate status to the cloud leadership team.
  • Identify and communicate opportunities for improving agency security posture within cloud environments.
  • Collaborate with external development teams to understand cloud workload solution architecture.
  • Provide technical, managerial, and administrative direction for problem definition, analysis, requirements development, and implementation for complex systems within cloud infrastructure.
  • Troubleshoot cloud performance issues and analyze network traffic for capacity planning solutions.

Requirements

  • 12+ years of experience in information technology with 8+ years of hands-on experience deploying/configuring workloads within either AWS or Azure, preferably with a focus on networking.
  • Demonstrated understanding of NIST 800-53 security principles and their application to cloud compute, network, and storage.
  • Experience integrating Palo Alto NextGen Firewalls into AWS or Azure.
  • Experience integrating and configuring Palo Alto Prisma Cloud for compliance reporting.
  • Demonstrated understanding of scripting deployment of governance policies and security controls to either AWS or Azure at an enterprise level.
  • AWS Specific: Demonstrated experience with Control Tower, SCPs, deployment of stacks/stack sets, and cross-account roles.
  • Azure Specific: Demonstrated experience configuring service principals for least privilege.
  • Professional Architect Certification within either AWS or Azure.

Nice-to-haves

  • Understanding of micro-segmentation and its application to cloud-based workloads.
  • Understanding of DNS services and domain resolution.
  • Understanding of implementing tools to support Data Loss and Prevention (DLP) within cloud-based workloads.

Benefits

  • Competitive salary range of $160,001 - $200,000 based on experience and other factors.
  • Ongoing application acceptance with no deadline for submissions.
  • Flexible work environment with hybrid options.
  • No COVID-19 vaccination requirement, but customer site vaccination requirements must be followed.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service