AWS Security Engineer

Job Description: Join the MilMove Security team supporting mission-support defense logistics systems in an AWS GovCloud environmentLead GitLab CI/CD security operations including SAST/DAST implementation and secure pipeline developmentDrive Risk Management Framework (RMF) compliance activities and support Authorization to Operate (ATO) processes for DoD systemsWork with cutting-edge cloud security technologies and DevSecOps practices while maintaining DISA STIGs and NIST 800-53 complianceCollaborate with cross-functional development and operations teams to embed security throughout the software development lifecycleDesign, implement, and maintain security controls for AWS GovCloud environments in accordance with DISA STIGs, NIST RMF, and FedRAMP requirementsLead SAST/DAST execution and runtime vulnerability assessments using GitLab toolsOwn security findings triage, remediation tracking, and verification across application portfoliosIntegrate and optimize GitLab security scanners (SAST, DAST, Dependency Scanning, Container Scanning, Secret Detection)Embed security controls into CI/CD pipelines and enforce secure development lifecycle practicesSupport the complete RMF accreditation lifecycle and development of artifacts required for Authorization to Operate (ATO)Implement and validate security controls in accordance with NIST 800-53, DISA STIGs, DFARS, and CMMC frameworksAssist the Information System Security Manager (ISSM) with security control implementation and continuous monitoringDevelop and maintain Plans of Action and Milestones (POA&Ms) to remediate assessment findingsMonitor and investigate alerts from security tools (AWS Security Hub, GuardDuty, GitLab security dashboards)Conduct incident response investigations using AWS CloudWatch and CloudTrail log analysis to determine root causeParticipate in the full incident management lifecycle: identification, categorization, containment, eradication, recovery, and lessons learnedPerform technical security assessments of computing environments to identify vulnerabilities and compliance gapsReview and update network diagrams, architecture documentation, and cloud security configurationsGenerate and review security architecture documentation, System Security Plans (SSPs), and compliance reportsRequirements: Bachelor's degree (BA/BS) in Computer Science, Cybersecurity, Information Systems, or related field (or equivalent experience)Minimum 2-5 years of hands-on cybersecurity or information assurance experienceActive Secret security clearanceExperience with AWS or AWS GovCloud, including dashboards, and security servicesHands-on experience with GitLab CI/CD pipelines and security scanning toolsWorking knowledge of DISA STIGs, NIST RMF (800-53, 800-171), and security compliance frameworksFamiliarity with security standards: CIS benchmarks, FIPS 140-2, DFARS, CMMC, FedRAMPStrong written and verbal communication skills for technical documentation and stakeholder engagementAbility to work independently with limited supervision and solve complex security problemsSecurity certifications: SecurityX, CASP+, CISSP, or equivalentBenefits: healthcarewellnessfinancialretirementfamily supportcontinuing educationtime off benefits