Cloud Security Engineer - CISA Pilot Program with Dept of Treasury

Multiple vacancies for this announcement. YOU DO NOT HAVE TO BE NEAR ARLINGTON, VA, PARTICIPANT WILL BE ASSIGNED TO NEAREST DHS FACILITY! We are seeking a Cloud Security Engineer to lead the implementation of cloud-native security controls across AWS, Azure, and GCP environments as part of a pilot interagency program with the Department of Treasury. You will support security posture management through Prisma Cloud and native tooling, implement automated policy enforcement, and drive integration with SIEM platforms like Splunk.

ABOUT THE JOB

Multiple vacancies for this announcement. YOU DO NOT HAVE TO BE NEAR ARLINGTON, VA, PARTICIPANT WILL BE ASSIGNED TO NEAREST DHS FACILITY! Implement security guardrails across multi-cloud infrastructure using native tools and Prisma Cloud. Deploy and manage CSPM capabilities to enforce compliance with federal frameworks (e.g., NIST, FedRAMP). Develop and integrate cloud logging and alerting pipelines into Splunk to ensure end-to-end monitoring and incident visibility. Automate security controls via Infrastructure-as-Code (IaC) across development and production environments. Assist in hardening IAM, networking, and container services per government security best practices.

RESPONSIBILITIES

• Implement security guardrails across multi-cloud infrastructure using native tools and Prisma Cloud.
• Deploy and manage CSPM capabilities to enforce compliance with federal frameworks (e.g., NIST, FedRAMP).
• Develop and integrate cloud logging and alerting pipelines into Splunk to ensure end-to-end monitoring and incident visibility.
• Automate security controls via Infrastructure-as-Code (IaC) across development and production environments.
• Assist in hardening IAM, networking, and container services per government security best practices.

QUALIFICATIONS

• 4+ years of experience in cloud security engineering across AWS, Azure, and/or GCP.
• Experience with CSPM platforms, particularly Prisma Cloud, AWS Config/Security Hub, Azure Defender, or GCP SCC.
• Familiarity with cloud-native IAM, KMS, security group, and network policy configurations.
• Experience with centralized logging and analytics tools such as Splunk.
• Working knowledge of Terraform, CloudFormation, or equivalent IaC tools.
• Familiarity with DevOps platforms such as GitHub, AWS CodePipeline/CodeBuild, and Azure DevOps.

ADDITIONAL ELIGIBILITY

Multiple vacancies for this announcement. YOU DO NOT HAVE TO BE NEAR ARLINGTON, VA, PARTICIPANT WILL BE ASSIGNED TO NEAREST DHS FACILITY! Secret Clearance Required. Desired Qualifications are (a) 4+ years of experience in cloud security engineering across AWS, Azure, and/or GCP. (b) Experience with CSPM platforms, particularly Prisma Cloud, AWS Config/Security Hub, Azure Defender, or GCP SCC. (c) Familiarity with cloud-native IAM, KMS, security group, and network policy configurations. (d) Experience with centralized logging and analytics tools such as Splunk. (e) Working knowledge of Terraform, CloudFormation, or equivalent IaC tools. (f) Familiarity with DevOps platforms such as GitHub, AWS CodePipeline/CodeBuild, and Azure DevOps.

TARGET MOCS

17C, 1B4, 0689, CTN, CMS

OTHER

Multiple vacancies for this announcement. YOU DO NOT HAVE TO BE NEAR ARLINGTON, VA, PARTICIPANT WILL BE ASSIGNED TO NEAREST DHS FACILITY! TO APPLY: Tailor a resume outlining the Jobs Description and Other Eligibility Factors. Title the email "Cloud Sec Engineer Skillbridge Opportunity." Address the email to anthony.travieso@mail.cisa.dhs.gov. Include your separation date and availability dates (start/finish) in the body of the email.