Cloud Systems Engineer

Core4ce

Cloud Systems Engineer

We are building and deploying the next‑generation multi‑cloud cybersecurity system for a Cyber Security Service Provider (CSSP) within the U.S. Department of Defense. Our cloud‑native platform unifies cybersecurity monitoring and operations across Cloud Service Providers and on‑premise environments. Our product team is delivering Day‑0 and Day‑1 operations ranging from provisioning infrastructure, deploying cyber tools, building custom integrations, to delivering real‑time telemetry to a centralized hub for mission‑aligned cyber defense.

As mission adoption grows, we are expanding our integration engineering team to ensure seamless, secure, and scalable onboarding of subscribers into this modernized cybersecurity ecosystem. This role is essential to bridging subscriber environments with CSSP services by delivering connectivity, deploying and validating security tools, and providing mission‑ready configurations aligned with DoD cyber defense objectives.

• Serve as primary integration engineer for subscriber onboarding, ensuring infrastructure and tools are properly deployed, configured, and operational.
• Provision, configure, and secure network interfaces between multi‑cloud service providers (primarily via AWS and Azure) and on‑premise environments.
• Deploy, validate, and troubleshoot cybersecurity tools (Elastic, Zeek, Suricata, Tenable, Trellix, etc.) using Infrastructure‑as‑Code and Configuration‑as‑Code tooling (Terraform, Ansible, CI/CD pipelines).
• Integrate custom cyber sensors and telemetry configurations to support customer‑specific data flows and mission requirements.
• Stand up secure data transport mechanisms (e.g., IPsec tunnels, VPNs, Event Hub ingestion) from customer edge environments to the centralized core in AWS.
• Validate cybersecurity tool operations, ensuring telemetry is flowing, logs are populating, alerts are firing, and dashboards are live.
• Collaborate with engineering and mission enablement teams to ensure deployments are tailored and aligned with customer operational environments.
• Support customer onboarding engagements by advising on architecture, remediating integration issues, and ensuring compliance with customer requirements.
• Collaborate across internal teams to refine and improve integration and deployment procedures and toolkits.
• Ability to travel up to 25% of the time.
• This position is designed to be flexible, with responsibilities evolving to meet business needs and enable individual growth.

• Active DoD Secret with ability to obtain TS/SCI.
• Hands‑on experience with cloud‑native networking and security services (VNet/VPC, VPN, Route Tables, NSGs/Security Groups) in AWS and Azure.
• Proven expertise with Terraform and Ansible for deploying and configuring cloud infrastructure and services.
• Proficiency with cybersecurity tool deployment and integration; preferably with Elastic, Zeek, Suricata, Tenable, Trellix products (SIEM, IDS/IPS, Endpoint Security).
• Experience deploying and securing IPsec tunnels, VPN gateways, and VNet/VPC peering across multi‑cloud architectures.
• Familiarity with Linux‑based systems, shell scripting, and containerization technologies (Podman, Docker).
• Strong troubleshooting skills across network, infrastructure, and application layers.
• Working knowledge of cyber telemetry formats, logging, SIEM pipelines, and event‑driven architectures.
• DoD 8570 IAT Level II or III certification (e.g., CISSP, CASP+, Security+ CE), or obtain one within 90 days.

• Experience in DoD cyber operations, CSSP environments, or working with mission partners in secure enclave contexts (IL4IL6, TS/SCI).
• Understanding of Zero Trust architecture and principles and how they influence network and cyber tool design.
• Proficiency in automation and scripting (Python, Bash) for tool deployment and telemetry parsing.
• Familiarity with custom telemetry pipelines and data fusion concepts using tools like Logstash, Beats, and custom ingestion methods.
• Experience implementing IAM policies and Role‑Based Access Control (RBAC) in multi‑tenant environments.
• Exposure to CI/CD pipelines, Git Lab, and Dev Sec Ops …