Leidos is an innovation company rapidly addressing the world’s most vexing challenges in national security and health.
Cybersecurity and Cloud Automation Engineer
Location
United States
Posted
4 days ago
Salary
$107.9K - $195.1K / year
Seniority
Mid Level
Job Description
Cybersecurity and Cloud Automation Engineer
Leidos
Role Description Leidos was awarded the U.S. Air Force Cloud One Architecture and Common Shared Services contract and currently has an opening for a Cybersecurity and Cloud Automation Engineer to support AWS, Azure, Google, and Oracle clouds. This is an exciting opportunity to use your experience to modernize a leading, global-scale multi-cloud environment in support of a critical mission, supporting USAF system resiliency, security, and cost effectiveness. Location: This position may require travel to support customer or corporate meetings near Hanscom AFB (Boston, MA), Huntsville, AL or Reston, VA. Role Summary: - Dual-role engineer focused on securing and automating AWS environments using IaC, CaC, and Security-as-Code. - Works within DevSecOps teams to design secure cloud solutions and build automated provisioning, configuration, and monitoring pipelines. Core Responsibilities: - Implement and maintain security controls for AWS services, aligned with NIST, FISMA, and DISA STIG requirements. - Configure secure logging, monitoring, and telemetry (e.g., CloudTrail, CloudWatch, SIEM integrations) for cloud workloads. - Perform vulnerability scanning, assessment, and coordination of remediation across cloud hosts, containers, and services. - Contribute to security architecture reviews and change/configuration boards to ensure secure designs and deployments. IaC/CaC & Automation: - Develop, maintain, and version-control IaC modules (e.g., Terraform, CloudFormation) for AWS networking, compute, storage, IAM, and security resources. - Use CaC tools (e.g., Ansible, Puppet) to automate OS, middleware, and application configuration and hardening. - Build and support CI/CD pipelines that integrate IaC/CaC and security checks for automated build, test, and deployment. - Create and maintain hardened, STIG/CIS-aligned golden images and reusable templates for repeatable secure deployments. Security-as-Code & Compliance: - Encode security baselines, IAM policies, network segmentation, and encryption standards into IaC/CaC and pipeline code (Security-as-Code). - Integrate automated security and compliance testing (SAST/DAST, dependency scanning, policy-as-code) into pipelines to enforce controls before release. - Support continuous monitoring and ATO/continuous authorization by maintaining evidence, automated checks, and documentation for audits. Operations & Zero Trust: - Support day-to-day operation of multi-environment AWS landscapes (dev/test/stage/prod/DR), including monitoring health and performance. - Troubleshoot issues across networking, access, and application deployment; contribute to incident and problem management and root cause analysis. - Implement and maintain identity- and context-aware access controls, MFA, and policy-based access in line with Zero Trust strategies. Collaboration & Documentation: - Collaborate with developers, cloud engineers, security analysts, and operations staff to design secure, automated solutions. - Contribute to technical documentation, including architecture diagrams, IaC/CaC module references, SOPs, and runbooks. - Share best practices in secure cloud engineering and automation with teammates; provide informal knowledge transfer and peer support (no direct reports). Qualifications - Bachelor’s degree in a technical field with 8 years of applicable experience; additional years of experience in cloud and cybersecurity engineering will be accepted in lieu of a degree. - Hands-on experience with AWS cloud services and DevSecOps practices in production environments. - Practical experience with IaC/CaC tools (e.g., Terraform/CloudFormation and Ansible/Puppet) and CI/CD pipelines. - Experience applying NIST, FISMA, and STIG/CIS controls in cloud environments and supporting ATO/accreditation activities. - Strong written and verbal communication skills and ability to work effectively in cross-functional teams. Preferred Qualifications - AWS certifications (e.g., Solutions Architect, Security Specialty) or security certifications such as CISSP, CISM, or CAP. - Familiarity with Zero Trust architectures, SASE/ZTNA solutions, and ICAM integrations. - US DoW Secret clearance. - Access to SIPR Facility. Pay Range Pay Range $107,900.00 - $195,050.00. The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Related Guides
Related Categories
Related Job Pages
More Cloud Engineer Jobs
• End-to-End Ownership Inside Strategic Accounts: Own discovery, technical scoping, infrastructure design, build, and production rollout for each design partner and ISV engagement. • Cloud Infrastructure & Compute Orchestration: Build and operate cloud infrastructure that powers customer physical AI workflows. • Platform Services: Build platform services for job execution, scheduling, retries, observability, logging, secrets, access control, and cost tracking. • Customer Onboarding Infrastructure: Build onboarding infrastructure for pilots including sandbox environments and secure execution. • Reliability, Security & Cost: Optimize cloud cost, utilization, performance, and reliability across workloads. • Cross-FDE Partnership: Partner with Physical AI Systems FDE to support heavy simulation pipelines. • Long-Term Architecture: Define the long-term infrastructure architecture for multi-tenant SaaS and high-throughput physical AI workloads. • Pattern Codification & Productization: Turn customer infrastructure pain into reusable platform capabilities. • Rapid Engineering Velocity: Use modern AI coding tools to compress build timelines. • Field Enablement & Feedback Loops: Co-author reference architectures, solution templates, and technical blogs for broader field support.
Senior Engineer, Azure, Terraform, Kubernetes
Blue Sentry CloudBlue Sentry Cloud specializes in highly-complex cloud initiatives that simply cannot fail.
• Collaborate closely with fellow engineers, product managers, and stakeholders to design, build, and support robust platform solutions • Architect, deploy, and manage Kubernetes clusters on AWS and/or Azure • Design and implement CI/CD pipelines that deliver high-quality code at speed • Build automated infrastructure with Terraform and other IaC tools • Lead cloud migration and modernization efforts, including re-platforming legacy workloads (Java, .NET, ETL, databases) to modern cloud-native services • Automate scaling, deployment, and management of containerized applications • Monitor, troubleshoot, and fine-tune system performance to ensure reliability, cost-effectiveness, and resilience • Implement proactive monitoring solutions that detect and prevent outages • Translate complex client requirements into scalable, automated solutions • Contribute to team knowledge-sharing, peer reviews, runbooks, and process improvement efforts • Support and maintain secure, compliant, and resilient infrastructure for critical systems
Senior LLM Engineer, RAG, AWS Bedrock
OowlishWe make innovation simple, convenient and right...we just make it HAPPEN
• Design and implement Retrieval-Augmented Generation (RAG) architectures. • Build AI-powered chatbot experiences using AWS Bedrock. • Develop multi-source data ingestion and retrieval pipelines. • Design and optimize embeddings and semantic search strategies. • Build scalable vector search solutions for enterprise knowledge retrieval. • Integrate structured and unstructured data sources into AI workflows. • Develop prompt engineering strategies to improve response quality and accuracy. • Build cloud-native AI services using AWS. • Collaborate with engineering teams to improve AI performance, scalability, and reliability. • Continuously evaluate new AI technologies and best practices for enterprise LLM applications.
Senior Enterprise AI Engineer, AWS Bedrock
OowlishWe make innovation simple, convenient and right...we just make it HAPPEN
• Design and develop enterprise AI solutions using AWS Bedrock. • Build AI-powered workflow automation for complex business processes. • Develop AI agents using AWS Bedrock Agents and Guardrails. • Integrate enterprise platforms, including ServiceNow and SAP. • Develop secure REST API integrations across enterprise applications. • Build Retrieval-Augmented Generation (RAG) pipelines using enterprise knowledge bases. • Develop document-processing workflows, including PDF extraction and business-rule validation. • Design cloud-native backend services using AWS. • Build scalable React interfaces for AI-powered business applications. • Develop GenAI CI/CD pipelines and automation workflows. • Implement Responsible AI principles and governance across AI solutions. • Collaborate with engineering and business teams to continuously improve AI capabilities.



