By Light Professional IT Services

Senior Cloud Infrastructure Engineer

By Light Professional IT Services

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloudCyber SecurityDynamoDBEC2KubernetesSplunk

About the role

  • Support the design and maintain landing zones using cloud applications such as AWS Organizations, Control Tower, SCP guardrails, Identity and Access Management (IAM) multi-account patterns, and VPC architectures (Transit Gateway, PrivateLink, NAT, IGW) for enclave isolation and cross-domain needs.
  • Engineer high-availability, multi-Region solutions leveraging cloud tools such as EC2, EKS/ECS Fargate, RDS/Aurora, DynamoDB, S3/EFS/FSx, Load Balancers, Route 53, and API Gateway.
  • Implement Zero Trust-aligned patterns (micro-segmentation, strong identity, continuous verification) consistent with DoD Zero Trust guidance.
  • Implement security controls and evidence generation for RMF ATO packages (SSP, SAR, POA&M) in coordination with cybersecurity teams.
  • Apply DISA STIGs (OS, DB, Kubernetes, Container) and SRG requirements for workloads at IL2–IL6
  • Tailor and automate STIG application using IaC and configuration management.
  • Integrate encryption and key management with cloud tools such as AWS KMS/HSM; enforce IAM least privilege, SCPs, permission boundaries, ABAC, and robust secrets management.
  • Implement cloud logging and metrics tools such as CloudTrail/CloudWatch/GuardDuty/Config for comprehensive audit and detection.
  • Align architectures with FedRAMP Moderate/High baselines when required and ensure boundary compliance for controlled workloads.
  • Develop secure connectivity (AWS Direct Connect/VPN), hybrid routing, and segmentation; implement TLS mutual auth, certificate management, and private service endpoints.
  • Design logging and telemetry pipelines (CloudWatch, OpenTelemetry, Kinesis, S3, SIEM integration such as Splunk/ELK) with retention, metadata/tagging, and data lifecycle policies.
  • Own SLOs/SLAs for platform services.
  • Implement autoscaling, health checks, and proactive capacity management.
  • Lead cost management and alerting practices of cloud environments in coordination with project leads.
  • Provide Tier 3 support, on-call rotations during exercises, and incident response coordination with cybersecurity and training operations.
  • Collaborate with agile teams and product owners to translate training requirements into platform capabilities.
  • Provide mentorship for junior engineers.
  • Establish standards, design reviews, and repeatable processes.
  • Present cloud solutions to project leadership and accreditation authorities.

Requirements

  • 8–12+ years of experience in cloud/platform engineering with at least 5 years focused on Amazon Web Services (AWS) with a demonstrated leadership delivering secure, scalable, production-grade cloud-based systems.
  • DoD 8570/8140 compliance: IAT II (Security+) required; IAT III/CISSP or CASP+ preferred
  • Associate or bachelor’s degree in a related technical discipline such as computer science or information technology from an accredited college or university.
Benefits
  • Medical, Dental & Vision Coverage
  • Wellness Program
  • 401(k) Matching
  • Disability (Short Term & Long Term)
  • Employee Assistance Program
  • Life Insurance
  • Education & Training
  • Generous Leave Policy (11 Federal Holidays, PTO, Military Leave, Bereavement and Jury Duty)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
cloud applicationsAWS OrganizationsControl TowerIdentity and Access Management (IAM)VPC architecturesEC2EKSRDSDynamoDBIaC
Soft skills
leadershipmentorshipcollaborationincident response coordinationcost managementcommunicationdesign reviewsprocess establishmentagile teamworkpresentation skills
Certifications
IAT II (Security+)IAT IIICISSPCASP+
Leidos

Senior AI Infrastructure Engineer

Leidos
Seniorfull-time$126k–$228k / year🇺🇸 United States
Posted: 9 hours agoSource: leidos.wd5.myworkdayjobs.com
AnsibleAWSAzureCloudCyber SecurityDockerGoogle Cloud PlatformKubernetesPythonTerraform
GovCIO

Senior TSSA, TrueSight Infrastructure Engineer/Analyst

GovCIO
Seniorfull-time$95k–$120k / year🇺🇸 United States
Posted: 13 hours agoSource: careers-govcio.icims.com
Calix

Staff Database Infrastructure Engineer

Calix
Leadfull-time$136k–$266k / yearCalifornia · 🇺🇸 United States
Posted: 1 day agoSource: calix.wd1.myworkdayjobs.com
BigQueryCassandraCloudDistributed SystemsGoogle Cloud PlatformGrafanaKafkaPrometheusPythonRedisTerraform
GeneDx

Senior Data Infrastructure Engineer

GeneDx
Seniorfull-time🇺🇸 United States
Posted: 1 day agoSource: boards.greenhouse.io
AnsibleDNSGrafanaPrometheusPythonSwitchingTCP/IPTerraformVMware