Cloud Security Engineer (remote)

Clearance Level
Cyber Engineering
Remote, Based in the USA

REQ#: RQ110482

Travel Required: Less than 10%
Public Trust: NACLC (T3)
Requisition Type: Regular

We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.

We are seeking a Cloud Security Engineer to support the National Library of Medicine (NLM) in Bethesda, Maryland.

At GDIT, people are our differentiator. As a Cloud Security Engineer supporting the National Library of Medicine, you will be trusted to work on commercial clouds to secure the configuration management of NLM applications. In this role, a typical day will include:

  • Developing and deploying infrastructure as a code scripts to implement and optimize security controls and mechanisms of a cloud infrastructure
  • Acting as the subject matter expert for cloud security and tools such as Security Information and Event Management (SIEM), access control mechanisms, Intrusion Detection and Intrusion Prevention Systems (IDS/IPS).
  • Monitoring Cloud infrastructure and pro-actively mitigate potential incidents before service degradation occurs
  • Providing guidance to our DevOps teams developing on public cloud platforms, advising on security standards for cloud deployment, and working to identify common patterns for template provisioning
  • Conducting assessments of security controls for new and existing cloud systems; creating and maintaining as-built system documentation, architecture diagrams, and online collaborative documentation
  • Determining security modes of operation and recommending new or revised security measures and countermeasures for current security challenges
  • Collaborating with other NLM team members to continue to evolve and implement a state-of-the-art secure cloud infrastructure.


  • BS/BA (or equivalent) and 8 years experience or a MS and 6 years experience
  • Contract requirement: 7 years of overall IT experience with degree; 11 years without degree; 5 years with MS. Also 5 years of system administration experience; 5 years of system security administration experience
  • Experience in designing and implementing an enterprise-wide Cloud security architecture
  • Proficiency with SIEM and vulnerability management solutions
  • Experience using common networking tools to aid in troubleshooting, including nmap, Wireshark, tcpdump, etc.
  • Proficiency in one or more scripting languages, such as Python, Perl, Powershell, OR Bash
  • Proficiency with TCP/IP/UDP ports and protocols, IDS/IPS, Network Access Control List (NACL) Access Control Lists (ACL) and Security Group (SG) applications

  • Must have CISSP or ability to obtain within first six months of employment
  • Must have strong written and verbal communications skills
  • Ability to obtain Level 2 Secret (ANACI) clearance if required


  • Experience in creating and editing AWS Cloud Formation scripts
  • Experience in securing and monitoring Kubernetes
  • Experience in managing, and monitoring a centralized AWS logging architecture
  • AWS Certified Security - Specialty, ISC2, or Cloud Security Alliance


  • Full-flex work week
  • 401K with company match
  • Internal mobility team dedicated to helping you own your career
  • Collaborative teams of highly motivated critical thinkers and innovators
  • Ability to make a real impact on the world around you



The likely salary range for this position is $132,120 - $198,180, this is not, however, a guarantee of compensation or salary; rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

View information about benefits and our total rewards program.

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.