Job Description
Our Client is seeking to fill Cloud Administrator positions in support of Federal Health Cloud Operations and Migration Services capability to provide operational input and support for the operations, maintenance, and refinement of the Enterprise Cloud environment, execution support for migrating new and legacy Federal Health applications and services to cloud computing and continuous improvement of a Federal Health IT infrastructure. The candidate will support our Federal Health clients in their cloud operations to enhance, optimize, and maintain their computing capabilities across their technical landscape. This includes working with our Federal Health system admins when supporting application teams, working with project teams to operate & maintain (O&M) Federal Health applications on their cloud platform. The Cloud Administrator must have expertise with Amazon Web Services (AWS) or Microsoft Azure.
Key responsibilities:
1. Utilize the Federal Health Enterprise Cloud Operational Tools (VAECOT), CSP native portals and tools, and/or other VA TRM-approved tools necessary to assist Federal Health applications in the VA's enterprise cloud (VAECOT tools listed at the bottom)
2. Utilize automation tools such as Terraform, Ansible, Cloud Formation, or similar
3. Assist with upgrading, installing, and configure monitoring solution for AWS or Azure for Windows or Linux servers
4. Create and maintain gold images/scripts
5. Assist with reporting on current infrastructure status
6. Document each application's production operations processes via a production operation manual (POM)
Required Skills & Experience
1. Minimum of six (6) years setting up, configuring and using AWS cloud operational tools to ensure service level agreements and performance targets are met, and continued compliance with policies, standards and guidelines.
2. Bachelor's Degree in computer science, engineering, or technical discipline (10 years additional work experience might be considered in lieu of a degree).
3. Current AWS or Azure certification or a recent passing exam (e.g., AWS CCP, AWS CSA associate/professional, AZ-900, AZ-104)
4. Experience in one or more of the VAECOT suite of tools, shown below.
5. Able to pass a background check to obtain a Public Trust
6. Must be a U.S. citizen
VAEC Operational Tools (VAECOT)
Some experience in one or more of the following tools is required:
Third party tools
1. Application Performance Monitoring: Dynatrace, AppDynamics
2. Cloud Security: Nessus, NetSkope, Enterprise Security External Change Council, Identity and Assessment Management, Continuous Monitoring as a Service, McAfee, eMASS, Centrify
3. Cloud Governance: Turbot
4. DevOps/Configuration Management/Help Desk: Ansible, Service Desk, ScienceLogic, ServiceNOW, SPLUNK, Jira ServiceDesk, Cloudockit, GitHub
5. Containerization: Red Hat OpenShift
6. Migration: CloudKey, Version One
7. Reporting: Apptio
Cloud Service Provider (CSP) Operational Tools Tools/Services
1. AWS Security: System Manager (Explorer and OpsCenter), CloudWatch, Config, CloudTrail, Elasticsearch ( Kinesis DataStreams), GuardDuty, Inspector, Key Management Service (KMS), Security Hub, Directory Service, Identity and Access Management, Resource Access Manager, Cognito, Secrets Manager, Certificate Manager, Artifact
2. Aws Monitoring and Logging: Quicksight, Eventbridge (AWS Kinesis DataStreams), Simple Notification Service (SMS), Elasticsearch (AWS Kinesis DataStreams), CloudTrail, CloudWatch
3. Aws Networking: Virtual Private Cloud (VPC), Route S3, API Gateway, Direct Connect, Appstream 2.0, Transit Gateway, Elastic LoadBalancer, Firewall Manager, WAF & Shield
4. AWS Storage: Cloud Tiering Services to S3 from On-Prem, Simple Storage Services (S3), S3 Glacier , Storage Gateway, Elastic File System (EFS), Backup
5. Azure Security: Monitor (Log Analytics and ASC), Event Hubs, Security Center (ASC) , Information Protection (AIP) , Key Vault, PowerBI, Network Watcher (Performance Monitor), Monitor (Log Analytics and ASC)
6. Azure Monitoring and Logging: Information Protection (AIP), Advance Threat Protection, Security Center (ASC), Information Protection (AIP), Key Vault, Active Directory, Role Based Access Control (RBAC), Resource Manager (ARM), Resource Graph (ARG), Active Directory B2C, Key Vault, App Service, Service Trust Portal
7. Azure Networking: Virtual Network, Traffic Manager, DNS, Application Gateway, Express Route, WebApps, FrontDoor, VPN Gateway, LoadBalancer, Firewall
8. Azure Storage: Netapp File Service, Storage (Blobs, Disks, Files, Queues, Tables), Storage Archive Access Tier, Stor Simple, Files, Backup
Nice to Have Skills & Experience
1. Active clearance for Public Trust (High-Risk) Position
2. ITIL certification or ITIL knowledge
3. Can provide technical support and OS-level remediations for Nessus scans
4. Some experience with network and/or systems administration in Linux (Red Hat) or Windows environments
5. Some knowledge of security regulations, best practices, countermeasures, compliance standards and current threats.
6. Experience creating technical documentation, standard operating procedures, and how-to guides
7. Helping application teams with system administration
8. One or more Microsoft or Amazon cloud certifications
9. Previous Federal Government experience preferably at VA
10. Experience with at least one configuration technology including: Chef, Puppet, Ansible, Docker, Kubernetes, etc.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.