Cloud Engineer

Role Summary

Key Responsibilities

• Implement and automate cloud infrastructure based on approved architectural blueprints and reference designs.
• Deploy, monitor, and troubleshoot secure AWS GovCloud environments.
• Execute multi-account AWS strategies, including account segmentation and automated security boundaries.
• Provision and manage compliant cloud foundations using AWS Control Tower and security guardrails.
• Ensure continuous adherence to FedRAMP, CMMC, and NIST SP 800-171 technical controls.
• Partner with security and compliance teams to support audit readiness, including evidence and documentation.
• Translate architectural designs into functional, production-ready cloud environments.
• Provide hands-on technical execution within Azure environments as required by architectural direction.
• Produce and maintain technical documentation, infrastructure-as-code artifacts, and operational runbooks.

Required Qualifications

• U.S. citizenship with the ability to obtain and maintain a U.S. DoD Secret security clearance.
• Minimum of 5 years of experience in cloud engineering or a senior cloud engineering role.
• Demonstrated experience designing and operating AWS GovCloud environments.
• Hands-on experience supporting federal or regulated cloud deployments.
• Strong working knowledge of FedRAMP, CMMC, and NIST SP 800-171 requirements.
• Experience implementing multi-account AWS architectures and landing zones.
• Experience with cloud network segmentation, including Transit Gateway, firewalls, and Direct Connect.
• Hands-on experience with infrastructure-as-code and automation tools (e.g., CloudFormation).
• AWS CloudOps Engineer or AWS DevOps Engineer certification (Professional level preferred).
• CompTIA Security+ certification or ability to obtain within six months of hire.
• Strong written and verbal communication skills.

Preferred Qualifications

• AWS Advanced Networking – Specialty or AWS Security – Specialty certification.
• Experience with Microsoft Azure in regulated or government-adjacent environments.
• Familiarity with Microsoft 365 GCC or GCC High environments.
• Experience implementing AWS Control Tower in regulated environments.
• Prior customer-facing delivery experience in regulated industries.

Work Model

We believe hybrid work is the way forward as we strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a hybrid position requiring 3 days a week in our office in Blue Ash, Ohio. Regardless of your working arrangement, we are here to support a healthy work-life balance though our various wellbeing programs.

The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.

We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.

• Remote eligible within the United States.
• Estimated travel up to approximately three weeks per year (domestic).
• Employment is contingent upon meeting security clearance and certification requirements.

Legal & Work Authorization