We are seeking a Cloud Computing Specialist (CCS) – Subject Matter Expert (SME) to provide expert-level cloud security, architecture, and compliance support to the Defense Logistics Agency (DLA) Critical Cloud and Infrastructure Support (CCIS) program. The CCS–SME will lead the assessment, implementation, and management of secure commercial cloud environments across Google Cloud Platform (GCP), Amazon Web Services (AWS), Microsoft Azure, and Oracle Cloud Infrastructure (OCI), ensuring compliance with Department of Defense (DoD) cybersecurity policies and frameworks.

The ideal candidate will possess extensive experience in the application of the Risk Management Framework (RMF), NIST 800-53 security controls, and DoD Cloud Computing Security Requirements Guide (SRG). This position requires hands-on experience with cloud security engineering, authorization processes, and automation of security compliance within multi-cloud and hybrid environments.

*This position is contingent upon contract award.*

• Serve as a subject matter expert on cloud computing technologies, architectures, and compliance requirements for DoD environments.
• Lead and perform Certification and Accreditation (C&A) and Risk Management Framework (RMF) activities across multiple cloud platforms.
• Evaluate, document, and validate cybersecurity controls in accordance with NIST SP 800-53, 800-37, and DoD Cloud SRG requirements.
• Develop and maintain security documentation, including System Security Plans (SSPs), POA&Ms, and Continuous Monitoring strategies.
• Advise DLA stakeholders on secure cloud architecture and provide recommendations to meet FedRAMP, DoD SRG, and Zero Trust requirements.
• Perform vulnerability assessments and security gap analyses for cloud-based and hybrid systems.
• Implement cloud-native security solutions and automation to ensure compliance with RMF and DISA STIG standards.
• Collaborate with system engineers, network specialists, and database administrators to ensure integrated and secure system operations.
• Provide technical expertise and support during audits, inspections, and Command Cyber Readiness Inspections (CCRI).
• Develop training materials and provide mentoring to DLA staff on cloud cybersecurity best practices and compliance automation.
• Other duties as assigned.

• Clearance: Must possess an active Secret clearance and be eligible for IT-I (Tier 5/SSBI) / Critical Sensitive access. U.S. Citizenship required.
• Certifications: 
  • ISC² Certified Cloud Security Professional (CCSP) or equivalent required.
  • One or more Google Cloud Platform certifications (Associate Cloud Engineer or Professional Cloud Architect).
  • One or more AWS, Azure, or OCI certifications (AWS Certified Cloud Practitioner, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Associate, AWS Certified Solutions Architect – Professional, AWS Certified SysOps Administrator, Microsoft Certified: Azure Administrator Associate, Microsoft Certified: Azure Solutions Architect Expert, Microsoft Certified Azure Security Engineer Associate).
  • DoD 8570/8140 IAT Level II or higher (e.g., Security+, CASP+, or CISSP).
• Education: Bachelor’s Degree in Information Systems, Cybersecurity, Computer Science, or related technical field.
• Five (5) or more years of direct experience with DoD Certification and Accreditation (C&A) and RMF processes.

• Minimum five (5) years of experience conducting cybersecurity assessments and cloud compliance reviews in large, complex DoD or Federal Information Systems environments.

• Expert knowledge of NIST SP 800-53 and 800-37 standards and DoD Cloud Computing Security Requirements Guide (SRG).
• Hands-on experience conducting cloud security assessments and authorizations for enterprise-scale environments.
• Demonstrated expertise with commercial cloud providers including GCP, AWS, Azure, and OCI.
• Strong understanding of Zero Trust principles and FedRAMP IL4/IL5 compliance frameworks.
• Experience implementing cloud automation solutions using Terraform, Ansible, or other Infrastructure as Code tools.
• Excellent communication, documentation, and problem-solving skills with the ability to lead technical discussions and compliance reviews.

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.