Cloud & Platform Security Engineer

Absolute Business Solutions Corp (ABSC) is not just another tech company. We’re a community of innovators, engineers, analysts and business professionals working together with our customers to tackle the most complex challenges. For more than 20 years we’ve supported critical Department of Defense (DoD), Intelligence Community (IC), Federal Civilian missions and global, multi-national corporations. We specialize in supporting our clients in the Intelligence, Technology, Defense, AI/ML, and Data Science fields. As we continue to grow at a rapid pace, we need some amazing new professionals to join our team.

ABSC has an exciting opening for you, our next Cloud & Platform Security Engineer, to assist with the release of a state-of-the-art technology stack under the DOMEX Technology Platform (DTP) contract supporting the OSINT Integration Center (OSIC). Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development. As a Cloud & Platform Security Engineer, your job is to provide technical security expertise in our cloud and on-premises infrastructure.

You will lean on your experience with security technologies and industry best practices while employing effective security solutions. This exciting and challenging work will help you expand your capabilities in security and will provide you with the skills and experience you need to achieve additional levels of the DoD 8570 IAT and IASAE Certifications. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables.

Responsibilities:

• Perform review and analysis of cybersecurity event logs, conduct technical security assessments, and identify vulnerabilities and non-compliance with established cybersecurity standards

• Conduct vulnerability scanning using ACAS, analyze results, track IAVM compliance, and validate remediation efforts

• Maintain ATO documentation in XACTA (or similar tools), manage POA&Ms, support C&A reviews, and contribute to continuous monitoring and RMF lifecycle activities

• Coordinate with security personnel and DevSecOps teams to recommend and implement mitigation strategies across mission systems

• Perform system installation, configuration, patch management, account management, and troubleshooting of IA and CND systems

• Apply System Security Engineering (SSE) principles across system design, lifecycle management, risk management, configuration control, intrusion detection, contingency planning, and auditing

• Design and implement Defense-in-Depth strategies across network, host, container, application, and data layers

• Engineer and secure cloud-native environments (AWS and/or Azure), including IAM configuration, encryption enforcement, logging/monitoring, and secure architecture design

• Secure Kubernetes and containerized workloads, including RBAC, network policies, image scanning, secrets management, and CI/CD integration (SAST/DAST)

• Perform enterprise Linux (Red Hat/CentOS) hardening aligned with DISA STIGs and DoD security benchmarks

• Secure cloud storage services (e.g., S3 buckets), ensuring proper access control, encryption, logging, and prevention of public exposure

• Evaluate distributed system security and performance tradeoffs, including TDS (Total Data Services) versus TPS (Transactions Per Second) considerations

• Support formal risk analysis and risk acceptance decisions and apply CIA Triad principles (Confidentiality, Integrity, Availability) in secure architecture and operational decision-making

Requirements:

To be successful in this role you need:

• BS degree and 8+ years of experience (additional experience may substitute for degree)
• Active TS/SCI clearance with ability to obtain a Poly
• DoD 8570 IAT Level II or higher certification (Security+ CE, CySA+, SSCP, CISSP, etc.)

• Experience supporting RMF/ATO processes, including development and review of SSPs, CONOPS, risk assessments, contingency plans, configuration management plans, and POA&Ms

• Experience with XACTA, eMASS, or similar RMF tools

• Experience with NIST SP 800-30, 800-37, 800-53, CNSSI 1253, and related DoD security frameworks

• Experience conducting vulnerability scanning, remediation validation, and vulnerability management

• Strong analytical, communication, and problem-solving skills

• Experience establishing and applying System Security Engineering (SSE) processes to integrate security controls into complex systems

• Hands-on cloud engineering experience (AWS and/or Azure)

• Experience securing Kubernetes and containerized workloads

• Enterprise Linux (Red Hat/CentOS) administration and hardening experience

• Experience integrating security into DevSecOps pipelines (including SAST and DAST)

• Experience designing and implementing Defense-in-Depth architectures

• Experience evaluating system risk posture and supporting formal risk acceptance decisions

• Understanding of distributed system performance considerations, including TDS vs TPS

• Demonstrated practical application of the CIA Triad in secure system architecture and RMF/ATO execution

Desired Experience:

• Software development experience (Python, Java, or similar)

• Experience with DevSecOps tools and CI/CD platforms

• Experience with database systems, search engines, and web applications

• Experience with Infrastructure-as-Code (Terraform, CloudFormation, etc.)

• Experience with container security tools (Prisma, Aqua, Anchore, Twistlock, etc.)

• Experience supporting high-throughput mission analytics or intelligence platforms

• Experience working in Agile environments and using Jira/Confluence

• Experience with NIST SP 800-171

Salary is commensurate with experience. An approximate salary range for this requisition is: $140k-$235k annually.

Who we are:
ABSC is a technology and services company that combines the agility of a small business with proven processes refined over more than two decades in business. We specialize in supporting public sector clients in the Intelligence, Defense, Health, and Safety areas. Our team stands ready to deliver the next generation of programs, personnel, and solutions to help advance our federal government customers’ driving innovation, agility, and security across all mission areas.

Some of our benefits include:

• Generous PTO plus 11 Federal Holidays
• Retirement Planning – 401k Fully Vested with Match
• Annual Health and Wellness Allowance – buy an Apple Watch, a treadmill, or hit the gym on us
• Career Development – Annual Funds to spend on Education and Training
• Volunteer Time Off – Annually, all employees can spend 8 hours directly supporting a charity of choice
• Charitable Match – ABSC matches an employee’s donation to a qualifying charity
• Referral Program – We pay for internal and external referrals!
• LOV Awards – Earn bonus awards throughout the year from our Living Our Values awards program

Apply to join our team today! We are always looking to grow our team - if you know someone who is seeking a new career opportunity, please share this job opening with them. ABSC offers generous external referral bonuses. You don’t need to be an employee to benefit from our Referral Program.

*ABSC is a proud V3, Virginia Values Vets, member which recognizes our commitment to hiring Veterans. If you are a veteran, please be sure to include that in your application.*

Equal Opportunity Employer, including veterans and individuals with disabilities.