Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field
3+ years of experience in cloud security engineering or cybersecurity engineering
Hands-on experience with AWS (preferably GovCloud) and cloud security services
Strong knowledge of federal cybersecurity frameworks (NIST SP 800-53, RMF, FISMA)
Requirements:
Design, implement, and maintain cloud security controls across AWS GovCloud and integrated cloud platforms
Perform continuous monitoring of cloud, network, and endpoint environments to detect and respond to threats in real-time
Implement and manage cloud-native security tools (AWS Shield, GuardDuty, logging, etc.) and third-party tools (SIEM, SOAR, EDR)
Conduct vulnerability assessments and manage remediation efforts, including tracking CISA Known Exploited Vulnerabilities (KEVs)
Job description
cFocus Software seeks a Cloud Security Engineer to join our program supporting Housing and Urban Development (HUD). This position is remote. This position requires a Public Trust clearance. Qualifications:
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
3+ years of experience in cloud security engineering or cybersecurity engineering.
Hands-on experience with AWS (preferably GovCloud) and cloud security services.
Strong knowledge of federal cybersecurity frameworks (NIST SP 800-53, RMF, FISMA).
Duties:
Design, implement, and maintain cloud security controls across AWS GovCloud and integrated cloud platforms.
Support cloud security architecture validation, ensuring alignment with Zero Trust principles and federal mandates.
Implement and manage cloud-native security tools (AWS Shield, GuardDuty, logging, etc.) and third-party tools (SIEM, SOAR, EDR).
Perform continuous monitoring of cloud, network, and endpoint environments to detect and respond to threats in real-time.
Support Security Operations Center (SOC) activities including incident detection, response, and mitigation.
Conduct vulnerability assessments and manage remediation efforts, including tracking CISA Known Exploited Vulnerabilities (KEVs).
Implement log aggregation, analysis, and security event monitoring using SIEM platforms such as Splunk.
Support threat detection, threat hunting, and integration of threat intelligence feeds.
Perform fit/gap analysis of cloud security posture and recommend improvements or new solutions.
Configure and maintain identity and access management (IAM), privileged access management, and authentication systems.
Support data protection strategies including encryption, DLP, and secure data handling.
Implement and maintain security automation and orchestration (SOAR) for incident response.
Support audit readiness, compliance reporting, and adherence to NIST, FISMA, FedRAMP, and RMF requirements.
Collaborate with architects, engineers, and SOC analysts to ensure secure integration across systems.
Maintain documentation of cloud security configurations, processes, and procedures.
