Cloud Security Engineer l

Position: Cloud Security Engineer l

Employment Type: Full Time 

Location: Falls Church, VA or St. Louis, MO preferred (remote potential within the continental US)

The Role: The Cloud Security Engineer I supports security control implementation, monitoring, and maintenance across customer-facing systems in regulated environments contributing to compliance sustainment, vulnerability remediation, system hardening, and security tooling under the guidance of senior personnel, with an expectation of growing technical depth in cloud security and secure engineering practices over time

About Us: Tesla Government Inc. (no affiliation with the automotive company) is a rapidly growing small business, located in Falls Church, Virginia. Founded in 2009, Tesla Government seeks to improve how government agencies manage and share information internally and with government and external partners. Our proven agile, outcome-oriented approach delivers results quickly, reducing risk and driving client success.

We offer Flex PTO, flexible work schedule, health benefits, 4% matching on 401k contributions, competitive compensation, and work from home (telework). We have a friendly, active work environment, and our projects make a difference.

Position Summary: T he Cloud Security Engineer I supports the implementation, monitoring, and maintenance of security controls across customer-facing systems operating in regulated environments. This role contributes to compliance sustainment activities by supporting security engineering tasks, compliance evidence collection, vulnerability remediation, system hardening, and security tooling administration.

The Cloud Security Engineer I operates under the guidance of senior security and engineering personnel and is expected to develop increasing technical capability in cloud security, compliance, and secure engineering practices over time.

Essential Duties and Responsibilities (others may be assigned)

Security Control Implementation Support

• Support implementation and maintenance of technical security controls across applications and infrastructure.

• Assist with security configuration of systems, services, containers, and cloud resources.

• Support validation of security controls and evidence collection activities.

• Participate in system hardening activities aligned with established security baselines and standards.

Compliance and Security Support

• Support compliance sustainment activities through artifact preparation, documentation updates, and evidence gathering.

• Support ISSO activities related to SSP maintenance, control implementation evidence, and POA&M tracking.

• Assist with preparation for audits, assessments, and security reviews.

• Support control testing and remediation tracking activities.

Vulnerability Management and Remediation

• Assist with vulnerability identification, triage, and remediation coordination.

• Support review of scan findings (e.g., STIG, ACAS/Nessus, container, and code scanning results).

• Work with engineering and DevOps teams to track and verify corrective actions.

• Support patching and remediation validation activities.

Security Operations Support

• Support DevOps and security personnel in monitoring security-related logging, alerting, and audit data.

• Assist with investigation and documentation of security events or control anomalies.

• Support access control, auditability, and least-privilege implementation practices.

• Contribute to incident response and operational support activities as assigned.

Secure Engineering and Change Support

• Support ISSO-led security review activities for application and infrastructure changes.

• Support secure configuration reviews for deployments and environment changes.

• Assist engineering teams in incorporating security requirements into delivery activities.

• Identify and escalate security concerns early in the change lifecycle.

What Success Looks Like:

• Security controls are implemented and maintained consistently across supported systems.

• Vulnerabilities and findings are addressed in a timely and traceable manner.

• Compliance sustainment activities are supported with accurate documentation and evidence.

• Engineering and DevOps teams receive effective security support throughout delivery activities.

• The engineer demonstrates continued growth in technical capability and security ownership.

Required Qualifications:

• 1–3 years of experience supporting cybersecurity, cloud security, DevSecOps, system administration, or security engineering activities.

• Familiarity with security frameworks and compliance standards such as NIST RMF, STIGs, or FedRAMP concepts.

• Exposure to vulnerability management, security scanning, and remediation processes.

• Familiarity with Linux or Windows administration, networking fundamentals, and identity/access management concepts.

• Exposure to cloud-based environments, preferably AWS or AWS GovCloud.

• Eligibility for a security clearance and ability to operate within a regulated environment.

Desired Experience:

• Familiarity with scripting or automation technologies (e.g., Bash, Python, or similar).

• Exposure to containers, CI/CD security, or infrastructure-as-code concepts (e.g., Terraform).

• Familiarity with security logging and monitoring tools.

• Experience with ACAS / Nessus and STIG compliance support.

• Experience with Splunk, CloudWatch, or similar security logging tools.

• Familiarity with Terraform or infrastructure-as-code concepts.

• Container security experience (ECS/Kubernetes preferred).

• Basic understanding of ATO packages and POA&M management.

To apply please submit:

• Resume

• Cover Letter
  

Compensation: The expected initial salary for this role is $85,000.00 - $95,000.000 annually. Actual compensation may vary based on factors including, but not limited to, job-related knowledge and skills, education, experience, certifications, geographic location, and organizational needs. Individual compensation will be determined on a case-by-case basis.

In addition to base salary, Tesla Government offers a comprehensive benefits package, which includes medical, dental, and vision insurance, retirement savings options, paid time off, paid holidays, and professional development opportunities.