Job Information
SAIC Cloud Engineer Senior Principal in WASHINGTON, District Of Columbia
Description
Cloud Engineer - Senior Principal
SAIC is seeking a Cloud Engineer Senior Principal role in support of our Department of Transportation (DOT) contract for EITSS Infrastructure support. This is currently a hybrid role where the potential candidate will be required to work at DOT HQ in Washington, DC two days a week. Note that the requirement could change to a full five days. As a Cloud engineer, you’ll use your experience to architect, build, and design solutions that integrate public Cloud services. You will incorporate techniques like Infrastructure as Code to ensure repeatable deployment of resources. You’ll provide expertise in the use of Cloud reference architectures and solutions to support software development in a DevOps environment. You should have excellent troubleshooting skills, stay current with industry trends, and should be a team player.
Job Role Specific Requirements:
Core responsibilities and duties; highlight day-to-day activities:
Creating/updating cloud environment configurations to establish/support application workloads, including
Azure Focused: Configuration of Subscriptions, Resource Groups, VNets, Subnets, load balancers, App Services, Azure Batch, Virtual Machines, resource tagging, billing, policy implementation, and security controls
AWS Focused: Configuration of AWS Accounts, IAM Users and Roles, VPCs, subnets, load balancers, Network routes, Transit Gateway, Control Tower, Systems Manager, Config Manager, stack sets, WAF, CloudFront, and Route53
Understanding of shell scripting and executing commands via the command line
Designing and building out automation platforms utilizing Infrastructure as Code methodologies – preferred skills are CloudFormation and/or Terraform, scripting capabilities with PowerShell and Python
Supporting and completing requests for operational support to include communicating level of effort and status to cloud leadership team
Supporting data calls for resources provisioned within the cloud environment and reporting out status of resources.
Identifying and communicating opportunities for improving agency security posture within cloud environments
Collaborating with external development teams to understand cloud workload solution architecture within agency AWS/Azure environment
Provide technical, managerial, and administrative direction for problem definition, analysis, requirements development and implementation for complex to extremely complex systems within cloud infrastructure.
Troubleshoot cloud performance issues.
Analyze network traffic and provides capacity planning solutions.
Qualifications
Required Qualifications, Skills, Experience or Certifications:
12+ years experience in information technology WITH 8+ years of focused, HANDS ON experience deploying/configuring workloads within EITHER AWS or Azure – preferred experience is NETWORK focused
Demonstrated understanding of NIST 800-53 security principals and their application to cloud compute, network, and storage
Experience integrating Palo Alto NextGen Firewalls into AWS or Azure
Experience integrating and configuring Palo Alto Prisma Cloud for compliance reporting
Demonstrated understanding of scripting deployment of governance policies and security controls to either AWS or Azure at an enterprise level
AWS Specific – Demonstrated experience with Control Tower, SCPs, deployment of stacks/stack sets, and cross account roles
Azure Specific – Demonstrated experience configuring service principals for least privilege
Professional Architect Certification within EITHER AWS or Azure
Job Role Specific Requirements:
Integrating tools and technologies to the cloud environment to support enabling TIC 3.0 Internet accessible workloads
Developing scripts to deploy policies and tags for cloud environment management (using tools such as AWS CloudFormation, PowerShell, Python and Ansible, including use of remote APIs
Configuring Web Application Firewalls
Configuring CSP applicable DDOS tools
Configuring Gateway load balancer endpoints and private links within cloud environments for network security
Troubleshooting network configurations for Palo Alto Next Gen Firewalls
Configuring and troubleshooting compliance reports within Palo Alto Prisma Cloud
Configuring compliance tools to support microsegmentation
Configuring security tools to support Data Loss and Prevention (DLP) using tools such as Prisma Cloud or Microsoft Purview
Demonstrated understanding of access control and security principals within CSP (Azure or AWS)
Preferred skills and qualifications:
Understanding of micro-segmentation and its application to cloud based workloads
Understanding of DNS services and domain resolution
Understanding of implementing tools to support Data Loss and Prevention (DLP) within cloud based workloads
Note: Candidate must be a U.S. citizen or green card holder who has resided in the U.S. for at least 3 years and the ability to obtain a public trust
Target salary range: $160,001 - $200,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site. REQNUMBER: 2410329
SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability