Senior Information Assurance Engineer; USAF Cloud One

Description

Leidos was awarded the U.S. Air Force Cloud One Architecture and Common Shared Services contract and currently has an opening for the AWS, Azure, Google, and Oracle clouds. This is an exciting opportunity to use your experience to modernize a leading, global-scale multi-cloud environment in support of a critical mission, supporting USAF system resiliency, security, and cost effectiveness.

This position will be in Huntsville, AL and may require travel to support customer or corporate meetings near Hanscom AFB (Boston, MA), or Reston, VA.

The Information Assurance (IA) Engineer will provide Risk Management Framework (RMF) engineering and cybersecurity support for the USAF Cloud One (C1) enterprise cloud environment supporting AWS, Azure, Oracle, and GCP at DoD Impact Levels (IL) 2-6. The position directly supports ISSO/ISSM functions, ATO sustainment, continuous monitoring, vulnerability management, and cybersecurity compliance activities in accordance with DoDI 8500.01, DoDI 8510.01 (RMF), AFI 17-101 (RMF), DoD Cloud Computing SRG, and NIST SP 800-53.

This role will work closely with Government ISSOs, ISSMs, Authorizing Officials (AOs), Cybersecurity Service Providers (CSSPs), and Cloud One engineering teams to ensure continued ATO compliance, security posture improvement, and rapid remediation of vulnerabilities within the C1 environment.

• Develop, update, and maintain RMF authorization artifacts in accordance with DoDI 8510.01 and NIST SP 800-53.
• Provide RMF-required documentation and artifacts to Government ISSO/ISSM in support of Assessment & Authorization (A&A) activities.
• Maintain and update System Security Plans (SSPs), Security Control Traceability Matrices (SCTMs), POA&Ms, and supporting documentation.
• Lead migration of security control baselines from NIST SP 800-53 Rev 4 to Rev 5, including control re-mapping, gap analysis, control implementation updates, and SSP/POA&M artifact revisions within DoD RMF processes.
• Lead Continuous Authorization to Operate (cATO) within a Dev Sec Ops  or cloud-based environment, including implementation of automated control validation, continuous monitoring integration, and real-time POA&M management.
• Lead ATO maintenance and sustainment activities for C1 and DPaaS environments.
• Lead Authority to Use (ATU) conditions and remediation tracking as directed by the AO.
• Assist Government ISSO/ISSM with maintaining compliance with:
  • DoDI 8500.01 (Cybersecurity)
  • DoDI 8510.01 (RMF)
  • AFI 17-101 (RMF)
  • DoD Cloud Computing SRG
  • DISA STIG/SRG
  • CNSSI 1253
• Lead security control assessments, audit readiness, and third-party cybersecurity inspections.
• Maintain audit log configuration, monitoring, and retention compliance.
• Support incident reporting and documentation in accordance with DFARS  and .
• Ensure compliance with SCCA and Cloud SRG requirements.
• Support secure configuration of AWS, Azure, Oracle, and GCP cloud environments.

• Bachelor's degree with 8-12 years of relevant experience, or Master's degree with 6-10 years of relevant experience. Additional years of experience may be considered in lieu of a degree.
• Active Secret clearance at a minimum required to start.
• US citizenship required
• CompTIA Security+ (IAT Level II) or equivalent required

• Experience with USAF Cloud One or Platform 1
• Experience with Zero Trust Architecture
• Cloud certifications in AWS, Azure, Google, or Oracle clouds
• Automation experience

Certifications:

CISSP (IAT Level III) or equivalent

C1

NACSS

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.

February 27, 2026

For U.S. Positions:
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

$ - $

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit

Pay and benefits are fundamental to any career…