Senior Cloud Security Engineer (AWS / RMF / ATO)

• Identify and evaluate cloud-based COTS/GOTS/AWS-native infrastructure components to support and deploy security compliance tooling.
• Collaborate with systems engineers and software developers to implement security-by-design principles
• Integrate security controls into CI/CD pipelines, containerized applications, and microservice architectures.
• Implement and maintain secure AWS cloud environments supporting DoD mission systems
• Apply secure cloud architecture patterns and AWS security services to support compliance with DoD security requirements.
• Implement security controls aligned with NIST 800-53, FedRAMP, and DoD security guidance.
• Integrate security controls into DevSecOps pipelines and cloud-native services.
• Configure and manage identity, encryption, logging, and network security withing AWS environments.

• Execute Risk Management Framework (RMF) activities in accordance within eMASS IAW DoDI 8510.1 and DoDI 8500.01.
• Develop and maintain RMF artifacts including:
  
  
  
  • System Security Plan (SSP)
  • Plan of Action and Milestones (POA&M)
  • Risk Assessment Reports (RAR)
  • Security Control Traceability Matrix (SCTM)
  
  
  
  
• Maintain cybersecurity documentation and evidence within eMASS
• Support preparation of ATO packages and security authorization activities
• Coordinate with program ISSMs, cybersecurity lead, government stakeholder to support system accreditation.

• Perform vulnerability scanning and remediation using tools such as ACAS, Nessus, OpenSCAP, or SCAP Compliance Checker
• Implement and validate DISA STIGs and security baselines across operating systems, containers, and cloud services.
• Support continuous monitoring activities required to maintain system accreditation.
• Integrate security controls into CI/CD pipelines, containerized applications, and microservice architectures.

• Produce cybersecurity documentation and technical artifacts supporting RMF accreditation
• Participate in technical interchange meetings, system design reviews, integration events, and program management review.
• Support cybersecurity testing, demonstrations, and operational deployments.

• Active DoD Secret or TS/SCI clearance
• Experience with AWS GovCloud or IL4/IL5 environments
• Familiarity with containerized environments (Docker, Kubernetes) and their security implications.
• Experience with SIEM platforms, endpoint protection, or security monitoring tools
• Knowledge of Zero Trust Architecture principles
• DoD 8570 / 8140 certification such as:
  
  
  
  • Security+
  • CISSP
  • CASP+
  • CySA+
  
  
  
  

Why You'll Love Working at Auria

We believe our team does their best work when they are well-supported, financially secure, and have the freedom to balance life outside of the office.

Time for What Matters

• Generous & Growing PTO: Start with a substantial paid time off package that increases every year you're with us.
• True Flexibility: Contract permitting, use Flex Time to work in a way that fits your life, not just your 8-to-5.
• 11 Paid Days Off: Enjoy 6 fixed company holidays plus 5 Floating Holidays to use whenever you choose.

Invested in Your Future

• 401(k) Match-Yours to Keep Instantly: We match up to 4% of your contributions. Both your contributions and the company match are yours from day one with no vesting wait-period.
• Industry-Leading Education Support: Level up with up to $12,000 annually for tuition and certifications. We don't just hire talent; we grow it.

Health & Peace of Mind

• Premium Healthcare, Lower Costs: High-quality medical plans paired with a Company-Sponsored HSA to help you save for the future.
• Fully Covered Life Insurance: Breathe easy with life insurance up to $50K provided at zero cost to you.
• Holistic Support: Access our Employee Assistance Program (EAP) for mental health, financial coaching, and more.

...and that's just the beginning!