Employment Type: Full Time Salary Exempt
Schedule: 8-hour workday; Monday-Friday, Core working hours 9AM-3PM Eastern Time
Location: Onsite Washington D.C. (20006)
Employment Status: Must be a US Citizen
Education: BA/BS or higher preferred
Security Clearance: Active DoD Secret or higher
Language Requirement: Must be very fluent in written and spoken English
Industry: Federal Government Contracting
**Note: Wiz experience is preferred, but NOT required.**
Trewon is seeking a Mid-Level Cloud Engineer who will work closely with application teams, cloud owners, and security engineering staff to analyze, mitigate, and remediate vulnerabilities identified through the Wiz Cloud Security Platform. This role is hands-on and requires the ability to translate Wiz findings into actionable remediation steps, guide teams on secure cloud configuration, and support continuous improvement of the organization’s cloud security posture.
The ideal candidate has strong cloud engineering experience, understands multi-cloud architectures, and is comfortable guiding teams through remediation workflows in enterprise environments.
Key Responsibilities:
Vulnerability Remediation & Technical Guidance
- Act as the primary technical advisor for remediation of vulnerabilities surfaced through Wiz Cloud, Wiz Defend, and Wiz Code findings.
- Support development, application, and infrastructure teams in resolving misconfigurations, identity risks, toxic combinations, and excessive permissions.
- Provide hands-on assistance in fixing cloud configuration issues across AWS, Azure, and GCP environments.
- Assist teams in understanding root causes and implementing sustainable long-term fixes.
Cloud Engineering Support
- Review cloud architectures and provide recommendations aligned with secure baseline configurations.
- Ensure cloud resources adhere to organizational security policies, NIST 800-53 controls, and RMF guidelines.
- Implement secure configuration changes related to identity, networking, storage, encryption, compute, and logging.
- Work with DevOps and application teams to integrate security practices into CI/CD pipelines.
Automation & Integrations
- Collaborate with security engineers to automate recurring remediation activities.
- Work with API integrations and automation workflows involving ServiceNow, Splunk, MS Teams, Okta, Qualys, Tenable, and other connected systems.
- Assist in tuning automated guardrails, policies, and workflows to prevent repeated vulnerabilities.
Cross-Team Collaboration & Communication
- Partner closely with Cloud Security Engineers, ISSOs, DevOps teams, and application owners.
- Create clear remediation guides, playbooks, and knowledgebase documentation.
- Provide clear, actionable advice to both technical and non-technical stakeholders.
- Participate in meetings and working sessions to drive remediation progress.
Required Qualifications:
- U.S. Citizen with active Secret (or higher) security clearance.
- 2–3 years of experience in cloud engineering, or DevSecOps.
- Strong hands-on experience with AWS, Azure, and/or GCP.
- Experience troubleshooting cloud security issues at the resource level.
- Familiarity with NIST 800-53, RMF, and federal cloud security practices.
- Strong understanding of identity management, networking, storage, and logging in cloud environments.
- Ability to read and interpret vulnerability/security findings and convert them into actionable remediation.
- Excellent written and oral communication skills.
Preferred Qualifications:
- Hands-on exposure to Wiz or similar CSPM tools (Prisma Cloud, Security Hub, Defender for Cloud).
- CSP ( AWS, Google, Azure) certifications.
- Experience with IaC tools such as Terraform, CloudFormation, or ARM/Bicep.
- Proficiency in scripting languages such as Python, PowerShell, or Bash.
- Experience with CI/CD pipelines and DevOps workflows.
- Security or cloud certifications (e.g., AWS Solutions Architect, Azure Administrator, CCSP).
Work Environment: On-site, Monday–Friday, Washington D.C.
Frequent collaboration with cybersecurity, DevOps, and application teams.
Opportunity to support cloud modernization and security uplift initiatives across a federal enterprise.
|
Click here for technical assistance.