Job Closed
This listing is no longer active.
ITility is a Service-Disabled Veteran-Owned Business with a passion to equip our nation’s Intelligence Community, armed forces, and first responders with the very best to empower their missions. From the virtual battlefield to boots on the ground, our people, processes, and performance drive our ability to help our clients protect what matters, now and for generations to come. At ITility, we help our customers command the future by thinking beyond perceived limits to create new, unexpected ways to protect and defend our nation. We inspire and empower people to create significant solutions that secure what matters to our customers and communities, here and around the globe. We Value: The Drive to Perform Beyond Perceived Limits. The Desire to Find Significance in All We Do. The Passion and Compassion That Powers Both. ITility is an Equal Opportunity Employer committed to providing a work environment that is non-discriminatory, harassment-free, fair, ethical, and inclusive.
Senior Cloud Engineer
Location
United States
Posted
98 days ago
Salary
0
Seniority
Senior
Job Description
Senior Cloud Engineer
Itility LLC
Role Description Join the ITility team and make a difference! We are seeking an experienced and mission-focused Senior Cloud Engineer to support a mission-critical enterprise modernization initiative in direct support of the Department of Defense (DoD). This position is integral to the design, security, and sustainment of AWS GovCloud environments hosting mission-essential systems during the ongoing enterprise transition. The ideal candidate combines deep technical expertise in cloud architecture and network security with a strong understanding of federal compliance frameworks, delivering secure, resilient, and audit-ready cloud operations in a complex, high-stakes environment. This is a remote role with occasional travel, 10%, to client sites or government installations. Responsibilities - Cloud Architecture & Engineering: - Design, architect, and manage AWS infrastructure including gateways, routing configurations, and hybrid connectivity between enterprise and cloud environments. - Configure and manage Palo Alto firewall deployments in AWS, including policy management, traffic inspection, and VPN tunnel management. - Architect and maintain Web Application Firewalls (WAF) to protect mission-facing applications. - Ensure all AWS environments meet DISA and GovCloud compliance requirements, including implementation of applicable STIGs and management of whitelisting procedures. - Cloud Compliance & Security Operations: - Execute and maintain DISA STIG compliance across all cloud-hosted infrastructure and configurations. - Manage whitelisting and access control procedures within GovCloud boundary requirements. - Support secure connectivity and interoperability within DoD enterprise boundaries. - Troubleshoot connectivity and routing issues across hybrid cloud environments. - Training & Knowledge Transfer: - Provide comprehensive, structured training to the Network Team covering cloud networking architecture, Palo Alto firewall operations, VPN management, and AWS operational best practices. - Develop technical documentation, configuration guides, and operational playbooks to support team self-sufficiency. - Lead knowledge-sharing sessions to build durable cloud competency across the enterprise network team. Qualifications - U.S. Citizenship required. - CISCO CCNP, CCNA, or Palo Alto PCNSE. - AWS Certified Solutions Architect – Associate or Professional. - CompTIA Security+ CE or equivalent (DoD 8570/8140 IAT II). - Eight (8) years of progressive experience in cloud engineering, with a minimum of five (5) years in cloud network engineering, including at least three (3) years of experience specifically within AWS GovCloud. - Hands-on experience with Palo Alto Networks firewall platforms, including policy management, VPN configuration, and WAF administration in cloud environments. - Demonstrated working knowledge of AWS networking services: VPC, gateways, route tables, Transit Gateway, and IAM. - Strong working knowledge of DISA STIGs and GovCloud compliance requirements, including STIG implementation and whitelisting procedures. - Experience managing VPN tunnels and secure hybrid connectivity between enterprise and cloud environments. - Solid understanding of DoD cloud boundary requirements and GovCloud operational constraints. - Strong documentation and communication skills with demonstrated ability to train and transfer knowledge to non-cloud engineers. Preferred Qualifications - Experience supporting DHRA, Army, or other DoD component enterprise IT modernization programs. - Experience integrating cloud infrastructure within NIPRNet environments. - Familiarity with Zero Trust architecture implementation. - Palo Alto certification (PCNSE or equivalent). - Prior experience delivering technical training or knowledge transfer programs to government or contract staff. - Experience supporting enterprise-scale cloud migrations. - Ability to work independently and collaboratively in Agile environments. - Bachelor’s degree in Computer Science or related field (or equivalent professional experience). Work Environment - Required to dress appropriately for the job environment, including adherence to safety, security, and site-specific dress standards. - Ability to sit or stand for extended periods while performing computer-based tasks. - Requires sustained use of hands and fingers for keyboarding, writing, and operation of standard office equipment, as well as frequent verbal communication, active listening, and visual acuity to perform job responsibilities effectively. - Occasional movement around the office, including climbing stairs. - Ability to travel up to 10%, which may include occasional visits to client sites or government installations. Physical Requirements - Work is typically performed in an office setting. - Prolonged periods of sitting at a desk and working on a computer. - Must have the ability to lift 15-25 pounds. Why ITility? ITility is a Service-Disabled Veteran-Owned Business dedicated to delivering secure, innovative technology solutions that protect and defend our nation. We empower our teams to think beyond perceived limits and deliver mission-focused solutions that matter. Your work will directly contribute to enterprise modernization efforts supporting national defense readiness.
Related Guides
Related Categories
Related Job Pages
More Cloud Engineer Jobs
• Define, encode, and harden Pearson-aligned cloud and IaC standards as versioned Git artifacts: Cursor rules, agent skills, reference Terraform modules, and scaffolds delivered through AFAs (passive rules at edit time; on-demand skills for design, remediation, and architectural verdict), including Internal Developer Platform and CI/CD guardrails for agent-assisted changes. • Express platform and operations context as diagram-as-code (for example Mermaid or Structurizr) and ADRs in the repository—linked to AFA install and assessment—not unmanaged documents outside Git. • Own Terraform on Azure for AKS and adjacent services (networking, identity, secrets, storage, monitoring): module boundaries, state and pinning, drift control, tagging, environments, and cost attribution. • Align CI/CD with enterprise change control—pipelines, promotion, plan/apply, rollback—and wire in policy-as-code, drift detection, secret scanning, and compliance tags. • Implement least-privilege Azure RBAC, managed identities, Key Vault, and network controls; keep secrets out of source; support rotation and audit-ready evidence in Git. • Shape AKS patterns: node pools and upgrades (including GPU pools, device plugins, and time-slicing or equivalent where used), failure modes and capacity, observability hooks in modules and AFA patterns, and consistent Terraform/Helm touchpoints for SKUs, labels/taints, and add-ons. • Produce handover-ready repository bundles for receiving squads—deploy, upgrade, and rollback views, ownership matrix, operational artifacts—and define readiness criteria with DevOps.
• Lead the Cloud Operations team, setting priorities, processes, and metrics. • Ensure stable and secure operation of the cloud infrastructure. • Define and drive risk mitigation plans (WAR), with a preventive focus. • Establish and evolve FinOps practices: cost management, budgets, and forecasting; identification of waste and optimization opportunities. • Implement and govern Identity and Access Management (IAM) practices: roles, policies, SCPs; least privilege principle; access and credential management. • Lead cloud security and hardening initiatives: AWS Config, Security Hub, GuardDuty (or similar); cloud security posture management (CSPM); vulnerability management. • Define and implement compliance and governance controls: policies, audits and evidence; adherence to standards and best practices. • Define and maintain architecture and security guardrails: mandatory standards (security baseline); automated controls (policy as code). • Govern the lifecycle of images and workloads: use of approved base images; vulnerability scanning; blocks for critical CVEs. • Collaborate with Architecture and Engineering to ensure adoption of defined standards. • Promote automation and continuous improvement (Infrastructure as Code, automated security, continuous controls).
Senior Cloud Engineer – Architecture, Foundation
ASAASSimplificamos o recebimento de cobranças para pessoa física, MEIs e grandes empresas.
• Design scalable, resilient, and secure cloud architectures • Evaluate architectural trade-offs considering cost, performance, security, reliability, and operational excellence • Create and maintain architecture diagrams (C4, AWS Architecture Icons) and detailed technical documentation • Conduct design reviews and architecture analyses with development teams • Implement and evolve cloud infrastructure with a focus on scalability, resilience, security, and cost optimization • Define reusable infrastructure patterns and frameworks to accelerate team delivery • Automate operational tasks using Infrastructure as Code (IaC) and scripting • Ensure high availability and performance of services by implementing disaster recovery and backup strategies • Plan and monitor service capacity and performance • Implement and maintain observability solutions (logs, metrics, traces) • Collaborate actively with development, product, and architecture teams • Write and implement code following internal quality standards • Perform code reviews and contribute technically to the platform architecture • Identify and implement continuous improvements in processes, architecture, and operations • Participate in the assessment and resolution of critical incidents • Promote and disseminate a culture of cloud architecture excellence • Evaluate new AWS technologies and services
Cloud Architect
AMERICAN SYSTEMSSupporting national priority programs since 1975. We know what's at stake.®
• Architect and design secure cloud solutions within a Department of the Navy virtual private cloud hosted on Microsoft Azure Flank speed • Lead planning and execution of migration from on premises systems to cloud environments while ensuring continuity of mission operations • Develop cloud architectures supporting NIPR SIPR and JWICS domains in coordination with government stakeholders • Design and maintain cloud networking identity access management storage and compute architectures aligned with Zero Trust principles • Integrate cybersecurity controls in accordance with Risk Management Framework NIST Intelligence Community Directive and Department of Defense policies • Support Assessment and Authorization activities including development of system security plans security assessment reports and plans of action and milestones • Coordinate with enterprise architects cybersecurity teams application developers and operations teams to ensure interoperable and secure cloud services • Support cloud cost modeling usage tracking and optimization to meet government financial management requirements • Develop and maintain technical documentation including architecture diagrams system designs and standard operating procedures • Provide guidance on cloud best practices automation scalability disaster recovery and high availability • Support transition activities ensuring required cloud skill sets are available throughout the contract lifecycle



