×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Cloud Computing: Infrastructure & Operations Data Security

Cloud Security Engineer​/Architect; Hybrid

Job in Falls Church, Fairfax County, Virginia, 22042, USA
Listing for: A.C. Coy
Full Time position
Listed on 2026-05-21
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Cloud Computing: Infrastructure & Operations, Data Security
Salary/Wage Range or Industry Benchmark: 120000 - 150000 USD Yearly USD 120000.00 150000.00 YEAR
Job Description & How to Apply Below
Position: Cloud Security Engineer/Architect (Hybrid)

Overview

  • Tier One Technologies has an immediate need for a Cloud Security Engineer/Architect for our US Government client.
  • This hybrid Contract-to-Hire position will be available to start in Falls Church, VA, Morrisville, NC or Eagan, MN
  • SELECTED CANDIDATES WITHOUT REQUIRED CLEARANCE WILL BE SUBJECT TO A FEDERAL GOVERNMENT BACKGROUND INVESTIGATION TO RECEIVE IT.
Responsibilities
  • Security Architecture Vision:
    Lead the design of a global Zero Trust architecture, ensuring robust identity governance (IAM), network micro-segmentation, and data encryption across AWS, Azure, or GCP.
  • Security Posture & Compliance Automation:
    Design and implement automated compliance assessments to enforce hardening standards (CIS, NIST) across cloud accounts and on-premises virtualized environments.
  • AI/ML Security Governance (Adversarial Defense):
    Establish security guardrails for the enterprise’s internal and customer-facing AI models. This includes protecting Databricks training pipelines from data poisoning and implementing mitigations for LLM-specific threats like prompt injection and sensitive data leakage.
  • Automated Guardrails (Policy as Code):
    Develop and enforce enterprise-wide security policies using Terraform, etc., ensuring that non-compliant infrastructure is automatically remediated or blocked from deployment.
  • Cloud Posture Management:
    Design and oversee the integration of CNAPP and CSPM tools to provide real-time visibility into misconfigurations, vulnerabilities, and excessive permissions.
  • Threat Modeling & Resilience:
    Conduct deep-dive threat modeling for complex cloud-native systems, simulating advanced persistent threats (APTs) and "blast radius" scenarios to strengthen system resilience.
  • Asset & Data Security:
    Architect and maintain the security of our sprawling asset inventory. Implement data-at-rest and data-in-transit encryption strategies that span from physical data center servers to cloud-native storage.
  • Identity & Fraud Mitigation:
    Develop and secure the "Identity Fabric" linking 600k+ employees and millions of commercial customers. Collaborate with Fraud teams to integrate signals from SIEM and Databricks to detect and block malicious account activity.
  • Hybrid Engineering:
    Build and manage secure connectivity (Transit Gateways, Service Mesh) between on-premises hypervisors and multi-cloud environments, ensuring consistent policy enforcement.
  • Threat Detection & Response:
    Partner with the SOC to develop high-fidelity detection logic. Build SOAR playbooks that automate the isolation of compromised cloud workloads or on-premises VMs.
  • Efficacy Assessment:
    Support ongoing "Purple Team" exercises and control testing to validate that security tools (EDR, WAF, DLP) are performing as intended across all tenants.
  • Hyper-Automation of Security Operations:
    Drive the transition from manual "click-to-operate" security to Autonomous Security Operations. This involves building advanced SOAR playbooks that use ML-based triggers to perform auto-remediation across hybrid environments without human intervention.
  • Business Process Streamlining:
    Partner with business units to integrate security "invisibly" into their workflows. Use automation to reduce "security friction" in logistics and retail operations, ensuring that compliance checks (like PCI or SOC2) are performed continuously and programmatically.
  • AI Asset Management:
    Discover and catalog "Shadow AI" usage across the enterprise, ensuring all third-party AI tools meet the enterprise’s privacy and security standards.
Qualifications
  • Bachelor’s or Master’s degree in Computer Science, Information Security or related field. If the individual s degree is not in the applicable field then four additional years of related experience is required.
  • 12+ years of experience in Cybersecurity.
  • 6+ years of experience focused on architecting secure cloud environments at scale.
  • Deep understanding of Artificial Intelligence (AI) and machine learning (ML) to develop, implement, and manage secure AI-driven solutions.
  • Cloud Fluency:
    Expert-level knowledge of security architectures in AWS, Azure, and Google Cloud.
  • Infrastructure as Code (IaC):
    Mastery of Terraform, Ansible, or Cloud Formation to deploy…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search