What You'll Do
Design and manage secure, scalable network architectures across multiple cloud platforms, including AWS, Azure, Google Cloud, and Oracle Cloud. Implement network segmentation, Zero Trust principles, and policy-driven access controls to support a global, multi-tenant environment. Integrate cloud networks with on-premises Department of Defense systems using technologies such as VPNs, Direct Connect, ExpressRoute, and SD-WAN solutions.
Automate provisioning and configuration of network resources using Infrastructure as Code tools like Terraform and Ansible. Monitor performance and diagnose connectivity issues with cloud-native tools including CloudWatch and Azure Monitor, along with packet capture analysis. Support compliance with DISA STIGs, NIST 800-53, and the Risk Management Framework through rigorous configuration and documentation practices.
Collaborate with cybersecurity, cloud engineering, and application teams to translate mission requirements into secure technical designs. Participate in architectural reviews, present solutions to leadership, and contribute to long-term technology roadmaps. Maintain detailed technical documentation and support operational processes across hybrid environments.
Requirements
- Bachelor’s degree with 8+ years of relevant experience, or Master’s with 6+ years; additional experience may substitute for degree
- Interim Secret clearance required to start; must maintain eligibility for Secret clearance
- U.S. citizenship required
- CompTIA Security+ or equivalent IAT-2 certification (must be current)
- Proficiency with cloud networking components such as VPCs, VNets, Transit Gateway, NSGs, and route tables
- Strong knowledge of TCP/IP, BGP, DNS, NAT, and VPN technologies
- Experience working in cloud, cybersecurity, or enterprise IT teams
- Excellent communication, documentation, and cross-functional collaboration skills
- Ability to thrive in a fast-paced, mission-focused setting
Benefits
This role supports a hybrid work model with primary locations near Hanscom AFB (Boston, MA) and Huntsville, AL. Candidates must be able to report on-site as required. The position fosters a mission-driven culture focused on security, resilience, and continuous improvement through collaboration across technical and operational teams.
Preferred Qualifications
- Industry certifications such as Versa Certified SD-WAN Engineer, F5-CTS, AWS Advanced Networking, or Azure Network Engineer Associate
- Hands-on experience with Versa SD-WAN and F5 BIG-IP (LTM, GTM, ASM)
- Experience with Infrastructure as Code to improve consistency and reduce manual effort
- Familiarity with USAF Cloud One, Platform 1, or DoD cloud architecture
- Scripting skills in Python, Bash, PowerShell, CloudFormation, ARM, or Bicep
- Knowledge of Zero Trust Architecture, ICAM, and cross-domain solutions
- Cloud certifications in AWS, Azure, GCP, or OCI
- Background in Site Reliability Engineering, DevOps, or cloud infrastructure roles
