Cloud Engineer

📋 Description

• • Join Aquia—Built In’s “#1 Best Remote Startup to Work For in 2025”—as a Cloud Engineer driving the U.S. Securities and Exchange Commission’s leap from legacy on-premises systems to a unified, cloud-native GitHub Enterprise platform. Your code and compliance expertise will directly accelerate investigations, cut authorization timelines, and save taxpayers millions.
• • Own the technical heart of a high-stakes Jira-to-GitHub migration. You will map, refactor, and redeploy dozens of CI/CD pipelines while embedding security controls that satisfy FedRAMP, NIST, and SEC-specific mandates. Every line you write becomes a reusable accelerator for future federal agencies.
• • Build and maintain a living inventory of pipeline functionality—capturing triggers, secrets management, artifact storage, and approval gates—so stakeholders can see real-time progress and auditors can trace every change back to a requirement and a test.
• • Author crisp security documentation (System Security Plans, Control Implementation Statements, POA&M updates) that turns complex cloud architectures into regulator-ready artifacts. Your docs will be the gold standard reused across Aquia’s growing portfolio.
• • Design automated test suites in Python, JavaScript, or Bash that validate migrated workflows end-to-end: from pull-request creation through container scanning, policy-as-code gates, and deployment to staging and production. Aim for 100% requirement coverage and nightly regression runs.
• • Embed continuous validation into GitHub Actions and third-party security scanners so that every commit is automatically assessed against SEC risk tolerance. When tests fail, you will triage, remediate, and feed lessons learned back into the framework.
• • Collaborate daily with SEC engineering, security, and governance teams in agile sprints. Translate policy language into technical tasks and vice-versa, ensuring non-technical stakeholders understand trade-offs and timelines.
• • Contribute to Aquia’s internal automation accelerators—open-source style libraries, reusable Terraform modules, and policy templates—so future engagements launch in weeks instead of months.
• • Champion a “secure-by-default” culture by pairing with junior engineers, leading lunch-and-learns, and documenting best practices. Your mentorship will multiply the impact of every security control you implement.
• • Work 100 % remote from anywhere in the U.S., supported by a team that has been 100 % distributed since day one. We default to asynchronous communication and deep-work blocks, with just enough live collaboration to stay connected and creative.