Cloud Information Systems Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Booz Allen Hamilton · 3 hours ago

Cloud Information Systems Security Engineer

positionFayetteville, NC
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$62K/yr - $141K/yr
date5+ years exp

Booz Allen Hamilton is seeking a Cloud Information Systems Security Engineer to help government clients understand and mitigate cyber threats. The role involves working with engineers and military leaders to assess cyber risks, develop mitigation plans, and implement security measures for hybrid-cloud services.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Use experience to work with highly skilled engineers and military leaders to discover their cyber risks, understand applicable policies, and develop a mitigation plan
Review technical and architectural details from highly complex teams to assess the entire threat landscape of client Hybrid-Cloud based Platform
Guide clients through a plan of action to minimize attack surfaces on applications, understand architecture, and mitigate vulnerabilities
Translate security concepts to technical implementation so clients can make the best decisions to secure critical and operational hybrid-cloud based services

Qualification

Software supply chain securityCI/CD securityContainer vulnerability managementKubernetes deploymentScriptingAutomationLinux system securityAWS cloud servicesDoD 8570 CertificationTS/SCI clearanceSoft skills

Required

5+ years of experience with software supply chain security and secure SDLC practices such as SLSA or NIST SSDF, including build provenance, artifact integrity, dependency management, and security gates in CI/CD pipelines
5+ years of experience securing CI/CD platforms, including pipeline hardening, secrets management, access control, integration of SAST, DAST, and SCA, container scanning, and enforcement of remediation policies
5+ years of experience with container, image, and host vulnerability management using tools such as Trivy, Grype, Anchore, or AWS Inspector, including policy-driven vulnerability remediation
Experience building, securing, and operating Dockerized applications, including secure Dockerfile patterns, image lifecycle management, and runtime security hardening
Experience deploying and operating workloads on Kubernetes EKS, GKE, AKS, or self-managed, including Helm-based deployment and management of security tooling
Experience with scripting and automation, including advanced Bash, intermediate+ Python, and basic PowerShell, to automate security workflows, controls, and integrations
Experience with Linux system security and AWS cloud services such as EC2, EKS/ECS, IAM, S3, VPC, KMS, CloudTrail, or GuardDuty, including system hardening, logging, monitoring, and collaboration with engineering and platform teams to document controls and guide remediation
TS/SCI clearance
HS diploma or GED
Ability to obtain a DoD 8570 IAT or IAM Level II Certification, including Security+ Certification, within 60 days of hire date

Preferred

Experience with DevOps or platform engineering, including building and maintaining CI/CD pipelines
Experience implementing Zero Trust security models in CI/CD pipelines and cloud environments
Experience with advanced container runtime security, including containerd or Kata Containers, and container registry hardening, including ECR, GCR, or ACR
Knowledge of securing AI and LLM-based systems and emerging AI-specific security risks
Experience interpreting vulnerability scan results, tuning baselines, and prioritizing remediation using a risk-based approach
Experience with basic forensic triage and incident response activities on Linux systems
Knowledge of infrastructure-as-code tools such as Terraform or CloudFormation for automating security controls
Knowledge of Kubernetes security best practices for service meshes, eBPF-based security tooling, ingress or WAF, and logging or monitoring stacks
Knowledge of additional programming languages such as Go or JavaScript to better assess application behavior and security risk
AWS Security Certification such as Security Specialty, Solutions Architect Associate, or Solutions Architect Professional Certification

Benefits

Health
Life
Disability
Financial
Retirement benefits
Paid leave
Professional development
Tuition assistance
Work-life programs
Dependent care

Company

Booz Allen Hamilton

twittertwittertwitter
Glassdoor4.2
company-logo
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering.
dateFounded in 1914
location
Mclean, Virginia, USA
people-size10001+ employees
web-link
http://www.boozallen.com

Funding

Current Stage
Public Company
Total Funding
$3.03B
2025-03-11Post Ipo Debt· $650M
2023-08-01Post Ipo Debt· $650M
2020-08-13Post Ipo Debt· $700M

Leadership Team

leader-logo
Matthew Calderone
Chief Financial Officer and Executive Vice President
linkedin
leader-logo
Kristine Anderson
Chief Operating Officer
linkedin

Recent News

Fortune
BP’s C-suite milestone: Women in both the CEO and CFO seats
2025-12-19
The Motley Fool
Why Booz Allen Hamilton Fell Today
2025-12-17
Washington Technology
A trio of C-level moves to note at Booz Allen, Leidos and SAIC
2025-12-17
Company data provided by crunchbase