Cloud Security Engineer / DevSecOps III

Department of Justice ? Federal Bureau of PrisonsIT Consolidated Support Services Solutions (IT CSSS)Location: 320 First Street NW, Washington, DC 20534 (On-site)Employment Type: Full-Time | Positions: 1Position OverviewInnosoft Corporation is seeking a Cloud Security Engineer / DevSecOps III to serve as a hands-on AWS security engineer supporting the Bureau of Prisons (BOP) cloud environment. This role integrates security into CI/CD pipelines, ensures compliance with federal security standards, and provides DevSecOps expertise for the BOP's cloud infrastructure.Key ResponsibilitiesServe as the hands-on AWS security engineer for the BOP cloud environmentIntegrate security into CI/CD pipelines and automate security testingImplement and manage AWS security services (VPC, Security Groups, IAM, KMS, S3/RDS encryption)Deploy and manage infrastructure as code using AWS CloudFormationConfigure and manage security monitoring tools (Splunk, NessTenable, Palo Alto, Imperva, Fortinet)Implement SAST/DAST security scanning in development workflowsManage containerized environments using DockerSupport CloudFront, Lambda, and API Gateway security configurationsEnsure compliance with FISMA, NIST 800-53, and federal cloud security requirementsCollaborate with development and operations teams to embed security throughout the SDLCCritical Requirements THE FOLLOWING REQUIREMENTS ARE MANDATORY ? CANDIDATES WHO DO NOT MEET ALL OF THESE WILL NOT BE CONSIDERED:U.S. Citizenship ? MANDATORY (no exceptions, federal contract requirement)Public Trust Clearance with Suitability ? REQUIRED (must be obtainable/active)Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or related field ? REQUIREDMinimum 5 years of IT experience ? REQUIREDAt least ONE active certification from: CISA, CRISC, CISM, CGEIT, CISSP, or CAP ? REQUIREDRequired Technical SkillsAWS Cloud Security: VPC, Security Groups, IAM, KMS, S3/RDS Encryption, CloudFormation, CloudFront, Lambda, API GatewaySecurity Tools: Splunk, Nessus, Tenable, Palo Alto, Imperva, FortinetDevSecOps: CI/CD Pipeline Security Integration, SAST/DAST ScanningContainerization: DockerCompliance: FISMA, NIST 800-53, Federal Cloud Security StandardsPreferred QualificationsTerraform experience for infrastructure as codeKubernetes / Amazon EKS experienceFedRAMP compliance experienceExperience with federal government cloud security environmentsCompensationSalary Range: $150,000 ? $185,000 annually (based on experience and qualifications)C2C Rate: $100/hrAbout This OpportunityThis position supports the DOJ Federal Bureau of Prisons IT CSSS contract (RFQ #15BPCC26Q00000029). The selected candidate will work on-site at BOP headquarters in Washington, DC, providing critical cloud security and DevSecOps support for federal corrections IT systems.Innosoft Corporation is an Equal Opportunity Employer.