DoD Cloud Services Expert - (TS/SCI)

Clearance Level
Top Secret/SCI
Category
Technology Consulting
Location
Remote, Based in the USA

REQ#: RQ137661

Travel Required: 10-25%
Public Trust: None
Requisition Type: Regular

GDIT is seeking a Cloud Service Expert with experience working commercial cloud services through both the FedRAMP and DoD cloud service authorization process to help provide support on our Cloud Support contract. This position is 100% remote.

The Cloud Service Expert will work with commercial and government entities to support the development, assessment, authorization, delivery, and support of new cloud services to DoD IT mission owners in both classified and unclassified environments. This role is dynamic, requiring a high degree of individual initiative and domain specific knowledge to help craft strategies, approaches, and technical solutions to deliver cloud services that effectively meet the needs of common DoD IT missions.

Additional responsibilities include but are not limited to:

  • Provide consulting services to cloud service providers and/or private cloud service development teams regarding the architecture, design, and successful operation of cloud services targeting DoD IT missions in classified and unclassified environments.

  • Manage technical project work as defined by the customer.

  • Leads medium to large, complex projects and major phases of very large projects, in addition to serving as a specialized technical practitioner where needed.

  • Support functional and technical requirements definition for cloud services that address mandatory security controls defined by FedRAMP Medium/High, DoD IL-4/5/6 and classified overlays.

  • Provide direct technical support as needed to verify the capability and operation of individual cloud services (IaaS, PaaS, and cloud native support services) in the context of security control compliance and customer usability

  • Support integration of cloud native identity and authorization services with DoD PKI natively or via federated identity providers.

  • Facilitate engagements between CSP engineering teams and security teams preparing assessable control responses and evidence

  • Support development of DoD specific customer engagement and cloud onboarding processes that considers DoD Cloud SRG and contract specific requirements

  • Proactively identify and describe elements of cloud service architecture or design that may conflict with DoD use or other security requirements and recommend alternatives to resolve those conflicts

  • Create elegant and effective architecture, design and workflow process diagrams covering new cloud services

  • Writing in support of a variety of documentation artifacts including technical, operations and security topics

  • Develop collaborative, trusted relationships based on integrity, competence, and performance between a variety of project stake holders

  • Quickly learn the technical intricacies of new cloud services as necessary to understand how customers will use those service in real-world scenarios, and identify relative strengths, weaknesses, opportunities, and innovations of those services in the context of industry state of the art

REQUIRED QUALIFICATIONS:

  • Active DoD TS/SCI security clearance

  • DoD 8570 IAT or IAM Level II certification(s) (e.g., Security+ CE, CASP+ CE)

  • Certified Solution Architect Associate level certification from one or more CSPs

  • Bachelor’s Degree in related technical discipline OR equivalent additional work experience in lieu of degree

  • 10+ years overall IT industry experience architecting/engineering large scale service provider or enterprise IT systems and services

  • 5+ years of experience supporting the development and delivery of commercial cloud services

  • 5+ years of experience supporting DoD IT solutions including the use of commercial and private cloud services

  • High degree of self-motivation and initiative to learn new cloud-oriented products and technologies

  • Must be a seasoned technical practitioner with a deep understanding of how commercial cloud services are delivered from the Cloud Service Provider (CSP) perspective, and how those services navigate the FedRAMP and DoD processes to achieve authorization.

  • Experience serving as a technical lead / cloud subject matter expert consultant with organizations delivering cloud services to DoD

  • Experience supporting cloud services through the FedRAMP (Med/High) and DoD IL-4/5/6 assessment and authorization process

  • Experience developing solutions and hands-on use of hyperscale cloud services from leading CSPs in support of DoD IT missions (Amazon, Microsoft, Oracle, Google)

  • Experience working with and thorough understanding of cloud service APIs, CLIs and related automation solutions in support of cloud service orchestration and Infrastructure as Code (IaC)

  • Familiarity with DoD Cloud SRG and related operational requirements for onboarding new DoD customer accounts and systems

  • Strong interpersonal communication skills capable of communicating complex technical concepts to audiences of different levels of technical knowledge and sophistication with a demeanor that encourages a collaborative exchange of ideas and quickly resolves conflicts

  • Basic familiarity with container runtimes (Docker, container, CRI-O) and cluster orchestration (Kubernetes)

  • Basic familiarity with running server vs. serverless applications in the cloud

  • Basic familiarity with Secure Cloud Computing Architecture (SCCA) services as defined in the DoD Cloud SRG

  • Basic understanding of TCP/IP network routing, switching, and security boundaries

  • Basic understanding of DoD RMF certification and accreditation process including rules surrounding ATO and IATT

DESIRED QUALIFICATIONS:

  • Master’s Degree in a technical discipline such as computer science, systems engineering or related field

  • DoD 8570 IAT or IAM Level III certifications (e.g., CISSP, CISA)

  • Certified Solution Architect Professional level certification from one or more CSPs

  • Coding skills – Python, BASH, PowerShell, YAML, JSON, using Visual Studio Code or similar IDE

  • Technical understanding of CI/CD pipelines, tool chains and repositories (e.g., Git, Jenkins, Ansible, Vault, etc.)

  • Hands on experience architecting and implementing IT solutions using cloud services from multiple CSPs (e.g. Amazon, Microsoft, Oracle, Google)

  • Experience adapting cloud services to meet residual CNSSI 1253 controls for RMF accreditation not directly inherited from authorized cloud environment

  • Experience migrating DoD systems and applications to IL4/5/6 cloud environments

  • Technical knowledge of and experience with automation tools like Ansible, Terraforms, AWS Cloud Formations, Azure Resource Manager, and/or Google Deployment manager.

  • Direct experience building a cloud service for a CSP and/or supporting a CSP through the FedRAMP+DoD authorization process

  • Familiarity/Understanding of the DoD Cloud Security Requirements Guide (SRG) and typical cloud consumption use cases by DoD IT missions in both unclassified (IL-1 & 5) and classified (IL-6) environments

#CloudSupport

#GDITcareers

#OpportunityOwned

#WeAreGDIT

#transitioningmilitary

#clearedjobs

#veterans

The likely salary range for this position is $168,000 - $252,000, this is not, however, a guarantee of compensation or salary; rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

View information about benefits and our total rewards program.


About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

0