Job Requirements
Huntsville, AL Reston, VA Washington, DC Tampa, FL Colorado Springs, CO
Top Secret Polygraph not specified
Senior Level Career (10+ yrs experience)
$160,000 - $200,000
Job Description
AWS Cloud Platform & Security Engineer (Top Secret)
Location: Huntsville, AL – Redstone Arsenal
Clearance: Active Top Secret required
Relocation: $3,000 relocation stipend available
Role Overview
We are seeking an experienced AWS Cloud Platform & Security Engineer to design, secure, and operate mission‑critical cloud environments supporting government programs at Redstone Arsenal. This role blends AWS platform engineering, cloud security, DevSecOps automation, and Linux-based tooling, with a strong emphasis on building secure, scalable, and resilient cloud foundations.
You will play a key role in establishing AWS secure baselines, automating infrastructure and security controls, and leading application migrations from on‑prem environments to AWS.
What You’ll Do
Design and build secure AWS cloud platforms and service delivery patterns, primarily across PaaS and IaaS
Establish AWS secure baselines / landing zones, including guardrails, governance standards, and baseline architectures
Automate infrastructure and security controls using DevSecOps practices, Infrastructure as Code (IaC), and CI/CD pipelines
Assess existing applications and lead migrations from on‑prem to AWS (rehost, replatform, refactor)
Integrate security controls into CI/CD pipelines, including IaC scanning, secrets detection, and policy enforcement
Design architectures for high availability (HA), disaster recovery (DR), and cost optimization
Develop and maintain Linux-based automation and security tooling supporting enterprise cybersecurity infrastructure
Partner with engineering, security, and operations teams to ensure compliance and mission readiness
Required Qualifications
Active Top Secret clearance
Strong hands-on experience designing and securing AWS cloud environments
Experience building and enforcing cloud security guardrails and governance
Proficiency with Infrastructure as Code (Terraform, CloudFormation, and/or CDK)
Experience with CI/CD pipelines and DevSecOps automation
Solid Linux administration background with automation/scripting experience
Experience supporting or executing on‑prem to AWS migrations
Understanding of HA/DR architectures and AWS cost optimization strategies
Preferred / Nice to Have
AWS certifications (Solutions Architect, Security Specialty, DevOps Engineer)
Scripting experience with Python and/or Bash
Experience with security tooling such as CSPM, policy-as-code, or compliance automation
Experience in classified or regulated environments
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless
and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking âApply Todayâ you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
Location: Huntsville, AL – Redstone Arsenal
Clearance: Active Top Secret required
Relocation: $3,000 relocation stipend available
Role Overview
We are seeking an experienced AWS Cloud Platform & Security Engineer to design, secure, and operate mission‑critical cloud environments supporting government programs at Redstone Arsenal. This role blends AWS platform engineering, cloud security, DevSecOps automation, and Linux-based tooling, with a strong emphasis on building secure, scalable, and resilient cloud foundations.
You will play a key role in establishing AWS secure baselines, automating infrastructure and security controls, and leading application migrations from on‑prem environments to AWS.
What You’ll Do
Design and build secure AWS cloud platforms and service delivery patterns, primarily across PaaS and IaaS
Establish AWS secure baselines / landing zones, including guardrails, governance standards, and baseline architectures
Automate infrastructure and security controls using DevSecOps practices, Infrastructure as Code (IaC), and CI/CD pipelines
Assess existing applications and lead migrations from on‑prem to AWS (rehost, replatform, refactor)
Integrate security controls into CI/CD pipelines, including IaC scanning, secrets detection, and policy enforcement
Design architectures for high availability (HA), disaster recovery (DR), and cost optimization
Develop and maintain Linux-based automation and security tooling supporting enterprise cybersecurity infrastructure
Partner with engineering, security, and operations teams to ensure compliance and mission readiness
Required Qualifications
Active Top Secret clearance
Strong hands-on experience designing and securing AWS cloud environments
Experience building and enforcing cloud security guardrails and governance
Proficiency with Infrastructure as Code (Terraform, CloudFormation, and/or CDK)
Experience with CI/CD pipelines and DevSecOps automation
Solid Linux administration background with automation/scripting experience
Experience supporting or executing on‑prem to AWS migrations
Understanding of HA/DR architectures and AWS cost optimization strategies
Preferred / Nice to Have
AWS certifications (Solutions Architect, Security Specialty, DevOps Engineer)
Scripting experience with Python and/or Bash
Experience with security tooling such as CSPM, policy-as-code, or compliance automation
Experience in classified or regulated environments
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless
and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking âApply Todayâ you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
group id: kforcecx
We offer roles across all three clearance levels: Confidential, Secret and Top Secret. With a Top Secret Facilities clearance, a proven subcontractor track record and a deep understanding of agencies across Defense, Intelligence, Homeland, Justice and Federal Civilian Sectors, Kforce brings more than 20 years of experience to supporting critical missions at federal, state and local levels.
