Legacybox Cloud Cost Jobs in Usa

Job Description Summary

We are seeking a highly skilled and experienced Senior Data Engineer to join our dynamic team. In this role, you will be instrumental in designing, building, and maintaining robust and scalable data pipelines and solutions within the Microsoft Azure ecosystem. You will be responsible for developing and optimizing ETL/ELT processes, ensuring data quality, and enabling efficient data access for analytics and business intelligence. We are looking for a hands-on engineer who thrives in a fast-paced environment and is passionate about leveraging cutting-edge technologies

Key Responsibilities:

Design, develop, and maintain cloud-based data pipelines and ETL/ELT workflows.

Build and optimize data architectures to support structured and unstructured data processing.

Collaborate with data analysts, data scientists, and business stakeholders to understand data needs.

Implement data quality, security, and governance best practices.

Monitor and troubleshoot data workflows to ensure high availability and performance.

Optimize database and data storage solutions for performance and cost efficiency.

Contribute to cloud adoption, migration, and modernization initiatives.

Mandatory Skills:

Strong expertise with Azure cloud platform.

Strong experience in Databricks

Azure Data Factory proficiency required; building datasets, data flows, and pipelines in ADF (not just maintaining something already built)

Hands-on experience with ETL/ELT tools and frameworks.

Proficiency in SQL, Python, and data modeling.

Knowledge of CI/CD pipelines and infrastructure-as-code tools.

Understanding of data governance, security, and compliance.

Preferred Skills:

Exposure to API integration and microservices architecture.

Strong analytical and problem-solving skills.

Azure cloud certifications and/or past experience

AKS (Azure Kubernetes Service) experience, and ETL related to applications containerized & deployed on AKS (or EKS)

Position - Cloud DevOps Engineer

Location - Chicago, IL ( Need Locals/Onsite )

Duration : 12 Months

Rate : $60/Hr on C2C (Max No rate)

Job Description:

• Design, implement, and maintain scalable and secure cloud infrastructure on Amazon Web Services (AWS).
• Build and manage end-to-end CI/CD pipelines using Harness CI/CD to automate build, test, and deployment workflows.
• Implement and maintain application performance monitoring using Dynatrace.
• Integrate security scanning tools such as Veracode, Wiz, and SonarQube within CI/CD processes.
• Ensure adherence to DevSecOps best practices and compliance standards.
• Automate infrastructure provisioning using Infrastructure as Code (IaC) tools (Terraform or CloudFormation).
• Deploy and manage containerized applications using Docker and Kubernetes.
• Implement centralized logging, monitoring, and alerting to maintain system reliability and operational visibility.
• Manage version control systems such as Git, including branching and merging strategies.
• Optimize cloud resources to enhance application performance and reduce infrastructure costs.
• Collaborate with development teams to troubleshoot build, deployment, and environment-related issues.
• Maintain high availability, fault tolerance, and disaster recovery strategies for production systems.
• Monitor system health and respond to production incidents in a timely manner.
• Document infrastructure architecture, deployment processes, and operational procedures.
• Ensure proper configuration management and consistency across environments.
• Participate in release planning and support deployment strategies.
• Implement automated testing and validation steps within the CI/CD workflow.

Murali C

Title : Oracle Fusion ERP Administrator (Cloud Administrator)

Work Location: Onsite (Monday–Friday) – Detroit Metropolitan (DTW) & Willow Run (YIP) Airports

Engagement Duration: Six (6) months, with possibility of extension or direct hire

Position Overview

The Client is seeking a qualified Oracle Fusion ERP Administrator (Cloud Administrator) to provide onsite administration and support of the Oracle Fusion Cloud environment. This role is responsible for security configuration, integrations, custom report development, workflow configuration, and ensuring the overall security, performance, and availability of the Oracle Fusion suite.

The ideal candidate will bring strong technical expertise, collaborative communication skills, and hands-on experience administering Oracle Fusion Cloud ERP in a complex enterprise environment.

Key Responsibilities

• Deploy, configure, test, and troubleshoot Oracle Fusion applications
• Administer Oracle security configuration, including user roles, data access, and security policies
• Develop and maintain integrations between Oracle Fusion and third-party systems
• Design, build, and maintain data models and reports using BI Publisher and OTBI
• Configure and optimize workflow processes to improve business operations
• Ensure system performance, availability, and security of the Oracle Fusion suite
• Collaborate with Oracle and third-party vendors as required
• Communicate maintenance schedules, refresh cycles, and outages effectively
• Monitor system performance and resolve issues in a timely manner
• Maintain comprehensive documentation of configurations, procedures, and processes
• Perform additional duties as assigned

Education Requirement

• Bachelor’s Degree from an accredited college or university in Computer Science, Information Technology, Engineering, or a related field

Minimum Qualifications

• Five (5) years of overall ERP administration experience
• Three (3) years of hands-on experience administering Oracle Fusion Cloud ERP
• Participation in at least one full Oracle Fusion Cloud Applications implementation
• Functional working knowledge of Oracle Fusion applications
• Functional working knowledge of Oracle Cloud Infrastructure (OCI)
• Strong communication and interpersonal skills with the ability to collaborate across all organizational levels

Preferred Qualifications & Competencies

• Experience administering Oracle Fusion Cloud HCM
• Experience administering Oracle Fusion Cloud EPM
• Experience designing and supporting business process workflows
• Experience developing functional and technical design specifications
• Experience with data conversions and data management practices
• Strong analytical and problem-solving capabilities
• Willingness to train and mentor internal staff
• Familiarity with SDLC, IT Change Control processes, deployment methodologies, and application lifecycle management
• Familiarity with core enterprise technologies such as ServiceNow and Office 365
• Public sector experience

Preferred Certifications (at least one or equivalent)

• Oracle Financials Cloud Implementation Professional
• Oracle Payroll Cloud Implementation Professional
• Oracle Fusion Cloud Procurement Implementation Professional
• Oracle Financial Consolidation and Close Implementation Professional
• Oracle Cloud Infrastructure Application Integration Professional
• Oracle Cloud Infrastructure Enterprise Analytics Professional
• Oracle Cloud Infrastructure Digital Assistant Professional
• Oracle Cloud Infrastructure (OCI) Foundations Associate

AGE Solutions is looking for a Senior Cyber Cloud Assessment Engineer to join our team in support of an upcoming cybersecurity risk management and assessment program with our DoD customer. As a Team Lead, you will be responsible for performing analysis, conducting independent validations of assessments, and Continuous Monitoring (ConMon) for authorized CSPs and CSOs.

Individuals in this role must be available to work full-time on-site at Ft. Meade, MD.

Responsibilities Include:

• 
  
• Conduct cybersecurity assessments and validations of Cloud Service Offerings (CSOs) in support of the Department of Defense (DoD) Provisional Authorization (PA) process.
  
• Evaluate Cloud Service Provider (CSP) documentation packages following government guidance and procedures, including key artifacts such as the Cloud Architecture Diagram, System Security Plan (SSP), SSP Addendum, Readiness Assessment Report (RAR), System Architecture, Security Assessment Plan (SAP), Security Assessment Report (SAR), and associated Plans of Action & Milestones (POA&Ms).
  
• Review, analyze, and process additional documents including Change Requests, Extension Requests, Deviation Requests, Whitelist Requests, Corrective Action Plans, templates, process guide approvals, and continuous monitoring (ConMon) artifacts for existing Provisional Authorizations.
  
• Prepare and deliver up to 30 Cloud Security Assessment Packages annually, each including validated cybersecurity controls, certifier recommendations, and a statement of residual risk.
  
• Participate in technical kickoff meetings and review preliminary documentation to assess a CSP's readiness posture.
  
• Analyze and provide detailed feedback on CSP submissions such as the RAR, SAP, SSP, and architectural diagrams.
  
• Assess and document the operational impact of authorizations, changes, and vulnerabilities on the CSP environment.
  
• Develop Cloud Security Assessment Packages in accordance with established guidelines, including the SAR, POA&M, and any Deviation Requests.
  
• Draft Authorization Recommendation Memoranda outlining CSO compliance with DoD cybersecurity controls, residual risks, and technical findings.
  
• Prepare formal DoD Provisional Authorization memoranda, detailing authorization length, CSO boundary, services provided, operating conditions, DoD usage considerations, and follow-on activities.
  
• Validate CSO controls within eMASS or other government-provided Governance, Risk, and Compliance (GRC) tools; ensure accurate tracking in the Mission Status Report (MSR).
  
• Review and verify the Customer Responsibility Matrix (CRM), ensuring proper control inheritance is reflected in eMASS/GRC systems.
  
• Upload authorization conditions as system-level POA&Ms in eMASS and monitor their resolution.
  
• Organize and associate all received documentation with applicable security controls within eMASS.
  
• Maintain and update the DoD Cloud Process Guide, including all checklists, templates, forms, and guidance documents.
  
• Assist in developing internal requirements and how-to guides for assessors conducting CSP validations.
  
• Document and refine assessment procedures and validation best practices to align with DoDI 8510.01 and the DoD Cloud Computing Security Requirements Guide (SRG).
  
• Contribute to the ongoing development and annual updates of the DoD Cloud Assessment Process Guides as requested by the Government.
  

Requirements:

• 
  
• Bachelor's degree (IT-related field preferred)
  
• Eight (8) years of overall experience in cybersecurity or network security position
  
• Have an active DoD Top Secret clearance with SCI eligibility
  
• DoD 8570 IAM/IA Technical (IAT) Level III certification
  
• Familiarity with security controls for Azure, AWS, and assorted cloud platforms
  
• Solid understanding of DoD Risk Management Framework (RMF), DoDI 8510.01, and DoD Cloud Computing Security Requirements Guide (SRG)
  
• Familiarity with security controls for Azure, AWS, and assorted cloud platforms
  
• Hands-on experience with eMASS or other government-provided GRC tools
  
• Familiarity with cloud security documentation, including SSPs, SARs, RARs, and POA&Ms
  
• Ability to analyze complex cloud architectures and provide accurate risk assessments
  
• Strong technical writing and communication skills to produce security assessment reports and formal recommendations
  
• Applicants must reside within a commutable distance of Ft. Meade, MD in order to work onsite full time.
  

Compensation: $110,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.

• 
  
• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
  
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  
• Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  
• Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  
• Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.
  

At AGE, you'll do work that matters, supported by a company that delivers for its people.

Job Description

Must Have Technical/Functional Skills

• Extensive experience with cloud platforms (AWS, Azure, GCP) and hybrid environments.

• Deep knowledge of data center technologies, including networking, storage, virtualization, and server infrastructure.

• Hands-on experience with automation tools, orchestration, and monitoring solutions.

• Strong understanding of security, compliance, and disaster recovery frameworks.

• Deep knowledge of cloud platforms (AWS, Azure, GCP) including IaaS, PaaS, and hybrid cloud architectures.

• Strong understanding of data center technologies: networking, storage, virtualization, compute, and server infrastructure.

• Hands-on experience with cloud migration, integration, and hybrid cloud strategies.

• Expertise in disaster recovery, high availability, and business continuity planning.

• Proven experience in leading technical teams and mentoring engineers.

• Ability to define, implement, and execute infrastructure strategies aligned with business goals.

• Capability to influence and guide senior stakeholders on technical decisions.

• Experience managing large-scale data center operations and cloud infrastructure.

• Knowledge of ITIL, operational best practices, and incident/problem management.

• Awareness of compliance, regulatory, and security standards (ISO, SOC, GDPR).

• Excellent verbal and written communication skills to interact with technical and non-technical stakeholders.

• Strong collaboration skills for working with cross-functional teams including architects, project managers, and vendors.

Good to Have

• Experience with Infrastructure-as-Code tools (Terraform, Ansible, CloudFormation).

• Scripting skills in Python, PowerShell, or Bash for automating operational tasks.

• Exposure to AI/ML workloads in cloud environments.

• Familiarity with edge computing or hyperconverged infrastructure solutions.

• Experience in managing large-scale infrastructure projects, including budgeting and resource planning.

• Knowledge of Agile/DevOps methodologies applied to infrastructure teams.

Roles & Responsibilities

• Highly experienced professional with over 10 years in leadership roles, specializing as a Subject Matter Expert (SME) in Cloud and Data Centre technologies. The role is responsible for defining and overseeing cloud infrastructure strategies,

managing data center operations, and providing expert technical guidance to ensure optimized, scalable, and secure solutions. This individual will act as the technical authority, driving innovation, operational excellence, and strategic alignment across cloud and data center initiatives.

• Define and implement cloud and data center strategies aligned with organizational goals.

• Drive innovation in infrastructure design, deployment, and operational efficiency.

• Evaluate emerging cloud technologies and recommend adoption strategies.

• Serve as the Subject Matter Expert for cloud platforms (AWS, Azure, GCP, or private cloud) and on-premises data center technologies

• Provide technical guidance to teams on architecture, deployment, and operational best practices.

• Lead complex troubleshooting, performance tuning, and capacity planning initiatives.

• Oversee day-to-day operations of data centers, including monitoring, maintenance, and incident management.

• Ensure high availability, disaster recovery, and business continuity plans are robust and tested..

• Manage vendor relationships and service contracts for critical infrastructure components.

We are looking for a Cloud Computing Specialist (CCS) to join our team in support of a DoD customer in Alexandria, VA. The CCS will serve as an Information Assurance and Cloud Computing SME with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards and guidance as outlined in the NIST Special Publication(s) (SP) 800-53 and 800-37 (current versions).

Responsibilities Include:

• 
  
• Provide full lifecycle Information Assurance (IA) support for systems maintaining current Authority to Operate (ATO) under RMF via eMASS.
  
• Update, maintain, and validate RMF artifacts, IA documentation, scorecards, and accreditation packages.
  
• Develop, manage, and execute POA&M, MOUs/MOAs, risk acceptance documentation, and other compliance artifacts.
  
• Ensure continuous compliance with DoD/DLA RMF requirements supporting ATO and Authority to Connect (ATC).
  
• Support RMF Assessment & Authorization (A&A) processes and validate eMASS inputs.
  
• Conduct annual risk assessments and IA control validations.
  
• Review engineering projects and change requests to ensure implementation of required IA controls and policies.
  
• Support connection approval processes and manage required documentation.
  
• Identify security risks and enhancements; develop and track mitigation strategies.
  
• Evaluate and recommend security components and configurations (e.g., firewalls, IDS/IPS).
  
• Provide IA input to Technical Review Boards (TRB) and Change Control Boards (CCB).
  
• Support DLA CERT, network engineering, and NTS teams on IA compliance and security event response.
  
• Maintain situational awareness of USCYBERCOM alerts/advisories and assess operational impact.
  
• Analyze proposed IT acquisitions for IA, interoperability, architecture, and standards compliance; identify required security configuration guidance.
  
• Support DISN sub-network accreditation to achieve/maintain full ATO and ATC.
  
• Plan and execute IA requirements for technology migrations affecting accredited systems.
  
• Implement and maintain information protection guidance for controlled unclassified and classified information in accordance with DoD/DLA policy.
  

Required Skills, Qualifications and Experience:

• 
  
• Minimum Requirement:
  
  • 
    
  • Five (5) years of relevant C&A experience; Risk Management Framework (RMF) and NIST C&A experience
    
  • DOD IA experience.
    
  
  
  
• Certification Requirements:
  
  • 
    
  • Cloud Computing Security Certification
    
  • Certification meeting DOD 8570.01 IAM III (CISSP, CISM, etc.)
    
  
  
  
• Skills and Experience:
  
  • 
    
  • Experience in assessing IA Controls and conducting C&A reviews for large, complex Information systems.
    
  • Ability to work independently with substantial cloud computing security knowledge.
    
  • Must have the essential skillsets to identify, manage and resolve cloud computing security risk and implement "best practices" as applied within a cloud environment (across all of the different deployment and service models, and derivatives).
    
  • Must be well versed in FedRAMP assessment methodology of security and privacy controls deployed in cloud information systems to include six (6) domain areas. The six domains include: Architectural Concepts & Design Requirements, Cloud Data Security, Cloud Platform & Infrastructure Security, Cloud Application Security, Operations, Legal & Compliance.
    
  
  
  
• Clearance Requirement:
  
  • 
    
  • This position requires a SECRET with a Tier 3 investigation.
    
  
  
  

Compensation: $100,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.

• 
  
• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
  
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  
• Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  
• Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  
• Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.
  

At AGE, you'll do work that matters, supported by a company that delivers for its people.

AGE Solutions is looking for a Cyber Cloud Assessment Engineer to join our team in support of a cybersecurity risk management and assessment program with our DoD customer. In this role, you will be part of a team responsible for performing analysis, conducting independent validations of assessments, and Continuous Monitoring (ConMon) for authorized CSPs and CSOs.

Individuals in this role must be available to work full-time on-site at Ft. Meade, MD.

Essential Duties and Responsibilities

• 
  
• Conduct cybersecurity assessments and validations of Cloud Service Offerings (CSOs) in support of the DoD Provisional Authorization (PA) process
  
• Prepare 30 Cloud Security Assessment Packages per year, including validated cybersecurity controls, certifier's recommendations, and residual risk statements
  
• Review Cloud Service Provider (CSP) documentation packages, including architectural diagrams, System Security Plans (SSP) with Addendums, Readiness Assessment Reports (RAR), Security Assessment Plans (SAP), and Security Assessment Reports (SAR)
  
• Evaluate supporting materials such as POA&Ms, Change Requests, Extension and Deviation Requests, Whitelist Requests, Corrective Action Plans, and applicable templates, checklists, and Continuous Monitoring (ConMon) artifacts
  
• Attend technical kickoff meetings to evaluate and document the CSP's security posture and readiness for assessment
  
• Analyze and provide feedback on assessment documentation, including the RAR, SAP, SSP, and system architecture diagrams
  
• Identify and document the operational impact of security authorizations, changes, or identified vulnerabilities within the CSP's environment
  
• Develop complete Cloud Security Assessment Packages in accordance with DoD standards, ensuring inclusion of SARs, POA&Ms, and Deviation Requests
  
• Create authorization recommendation memorandums summarizing compliance with DoD cybersecurity controls, technical evaluation results, and residual risk considerations
  
• Draft DoD PA memorandums outlining CSO boundary definitions, service offerings, authorization duration, terms and conditions, DoD usage considerations, and follow-on actions
  
• Validate implementation of CSO controls within eMASS or a government-provided GRC platform, and log assessment completion in the Mission Security Review (MSR)
  
• Review the Customer Responsibility Matrix (CRM) and ensure correct inheritance mapping within eMASS or the designated GRC tool
  
• Enter all authorization conditions into eMASS as system-level POA&Ms and monitor for timely resolution
  
• Upload and associate all CSP documentation with applicable security controls in eMASS or the appropriate system of record
  
• Track and manage all CSO-related data using the Team Lead Resource (TLR) Assessment Database
  
• Maintain and update the DoD Cloud Process Guide and associated templates, forms, checklists, and documentation
  
• Contribute to the development of internal instructions, how-to guides, and reference material to support consistent assessor workflows
  
• Ensure assessment activities are conducted in compliance with DoDI 8510.01 and the DoD Cloud Computing Security Requirements Guide (SRG)
  
• Document assessment methodologies and validation best practices to continuously improve assessment accuracy, consistency, and process efficiency
  
• Support the ongoing development and annual updates of the DoD Cloud Assessment Process Guides in alignment with evolving policy and government directives
  

Requirements:

• 
  
• Bachelor's degree (IT-related field preferred)
  
• Five (5) years of overall experience in cybersecurity or network security position
  
• Have an active DoD Top Secret clearance with SCI eligibility
  
• DoD 8570 IAM/IA Technical (IAT) Level II certification
  
• Working knowledge of DoD Risk Management Framework (RMF) and DoDI 8510.01
  
• Familiarity with the DoD Cloud Computing Security Requirements Guide (SRG) and associated cloud security policies
  
• Familiarity with security controls for Azure, AWS, and assorted cloud platforms
  
• Experience conducting security assessments and developing security documentation (e.g., SSP, SAR, POA&M, SAP)
  
• Proficiency with eMASS or equivalent Government Risk and Compliance (GRC) tools
  
• Demonstrated ability to interpret and apply NIST SP 800-53 security controls in cloud environments
  
• Strong analytical and technical writing skills with the ability to communicate complex topics clearly
  
• Applicants must reside within a commutable distance of Ft. Meade, MD in order to work onsite full-time.
  

Work Environment:

• 
  
• Must be able to sit for long periods
  

Compensation: $85,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.

• 
  
• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
  
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  
• Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  
• Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  
• Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.
  

At AGE, you'll do work that matters, supported by a company that delivers for its people.

CarMax, the way your career should be!

Principal Engineer – Network, Cloud & Identity (ISE / NAC)

About This Role

CarMax is modernizing and scaling its technology platforms to support secure, reliable, and resilient digital experiences. As a Principal Engineer within the Solutions Delivery and Engineering organization, you will provide senior technical leadership across enterprise networking, cloud networking, and automation, with a specific focus on Identity Services Engine (ISE) and Network Access Control (NAC).

This role combines hands-on technical expertise with architectural guidance and cross-team influence. You will partner with engineering teams, operational support teams, architects, and leadership to implement, support, and evolve secure network platforms that support both cloud and on-premise environments.

Key Responsibilities

• Provide senior technical leadership for enterprise network and cloud networking platforms, ensuring reliability, scalability, and security.
• Partner with technology leadership to support large, cross‑organizational initiatives and address complex technical challenges.
• Collaborate with engineering, architecture, and product teams to design and deliver network and identity solutions aligned with business needs.
• Influence technical standards, patterns, and best practices across teams, with an emphasis on security, automation, and operational efficiency.
• Lead design and implementation efforts for network access control (NAC) and identity-based network security solutions.
• Mentor and guide engineers through technical reviews, design discussions, and problem resolution.
• Participate in on-call rotation to support scheduled change windows and incident response for enterprise networks.
• Display high level leadership skills, being able to drive the overall vision of the organization.
• Stay current with industry trends in networking, cloud connectivity, automation, and identity services, and apply relevant advancements where appropriate.

Role Summary

The Principal Engineer is a senior individual contributor role focused on technical depth, architectural consistency, and engineering excellence. This position requires strong problem-solving skills, the ability to work across organizational boundaries, and experience influencing technical direction without direct authority. You will be expected to balance strategic thinking with hands-on involvement, particularly in complex or high-impact initiatives related to network security and identity.

Required Qualifications

• Bachelor’s Degree in Computer Science, Decision Science, Engineering, Statistics, or a related field, or equivalent alternative education, skills, and/or practical experience is preferred.
• 7+ years of work experience required in Network, Cloud Network, Network Security, and other areas directly relevant to Network/Cloud/Automation responsibilities and tasks; multiple certifications preferred.
• Demonstrated experience working in large, complex enterprise environments.

Technical Experience

Network, Cloud, and Automation

• 7+ years of experience with enterprise routing, switching, firewalls, and wireless networks, with HPE Aruba and Fortinet experience preferred.
• 5+ years of experience designing, building, and operating network infrastructure in cloud platforms, with Azure preferred.
• Strong understanding of hybrid networking models connecting on‑premise environments with public cloud platforms.
• Experience with network automation and scripting using languages such as Python, Ansible or PowerShell.
• Proven ability to design and support highly available and resilient network architectures.
• Experience driving technical improvements or standards across multiple teams.

Identity, NAC, and Cisco ISE

• Hands-on experience designing, implementing, and supporting Cisco Identity Services Engine (ISE) in enterprise environments.
• Strong knowledge of Network Access Control (NAC) concepts and implementations for wired, wireless, and device administration use cases.
• Experience configuring authentication and authorization policies within Cisco ISE.
• Experience implementing and supporting TACACS+ for device administration and role-based access control.
• Ability to act as a technical subject matter expert for ISE and NAC, providing guidance to engineering teams and stakeholders.

Professional Skills

• Strong analytical and troubleshooting skills, with the ability to resolve complex technical issues.
• Clear and effective communication skills, both written and verbal.
• Ability to work independently while also collaborating across teams and disciplines.
• Attention to detail and a focus on operational stability and security.
• Interest in continuous improvement through automation and process optimization.

Work Location and Arrangement - This role can be based out of the following locations:

• Midtown: This role will be based out of the CarMax Midtown Office (Richmond, VA) and associates will work onsite 5 days per week
• Plano: This role will be based out of the Dallas Tech Hub (Plano, TX) and associates will work onsite 2 days per week.

Work Authorization: Applicants must be currently authorized to work in the United States on a full-time basis. Sponsorship will not be considered for this specific role.

About CarMax

CarMax disrupted the auto industry by delivering the honest, transparent and high-integrity experience customers want and deserve. This innovative thinking around the way cars are bought and sold has helped us become the nation’s largest retailer of used cars, with over 250 locations nationwide.

Our amazing team of more than 25,000 associates work together to deliver iconic customer experiences. Along the way, we help every associate grow their career and achieve their best, at work and in their community. We are recognized for our commitment to training and diversity and are one of the FORTUNE 100 Best Companies to Work For®.

Job Title: IAM Architect – SailPoint Identity Security & Cloud Security

Location: Miami, FL, Onsite

Duration: Contract

Role Summary

We are seeking an experienced IAM Architect to lead the design and implementation of enterprise identity governance and cloud security solutions. The role will focus on architecting and deploying SailPoint Identity Security Cloud and other solutions from SailPoint Technologies to strengthen identity lifecycle management, access governance, and cloud security across enterprise environments.

Key Responsibilities

• Architect and implement enterprise Identity and Access Management and identity governance solutions.
• Lead the design and deployment of SailPoint Identity Security Cloud (ISC) and SailPoint IdentityIQ.
• Define architecture for identity lifecycle management, access certifications, role-based access control (RBAC), and policy enforcement.
• Design integrations between SailPoint and enterprise systems, directories, and SaaS applications.
• Architect IAM controls across cloud environments such as Amazon Web Services, Microsoft Azure, and Google Cloud.
• Establish identity governance frameworks to support least privilege, compliance, and security policies.
• Provide architectural guidance to engineering teams and stakeholders on IAM and cloud security best practices.

Required Skills

• 10+ years experience in IAM and identity governance architecture.
• Strong hands-on expertise with SailPoint Identity Security Cloud and/or SailPoint IdentityIQ.
• Experience designing scalable IAM architectures for enterprise and cloud environments.
• Strong understanding of identity lifecycle management, access reviews, RBAC, and compliance frameworks.
• Experience with API integrations, identity connectors, and enterprise directory services.

We are seeking an experienced Cloud Information Systems Security Engineer to design, implement, and manage security solutions for cloud environments. The selected candidate will lead security engineering efforts, identify risks, and develop mitigation plans to ensure compliance with DoD and federal cybersecurity standards. This role will primarily support CLIN 5 and is ideal for professionals with hands-on experience in cloud security, InfoSec engineering, and risk management within federal programs.

Security Clearance: Secret Clearance Required

Work Authorization: U.S. Citizens ONLY due to legal or government contract requirements

Key Responsibilities:

• Develop, implement, and manage information security engineering designs and solutions for cloud environments.
• Identify system security threats, vulnerabilities, and risks; develop and implement mitigation plans.
• Architect, design, and evaluate security-focused tools, services, and processes.
• Oversee assessment and mitigation of system security risks throughout the program life cycle.
• Validate system security requirements and perform security analyses to ensure compliance.
• Implement security designs across hardware, software, data, and operational procedures.
• Support continuous monitoring and improvement of cloud security posture.
• Collaborate with engineering, DevOps, and operations teams to enhance security automation and resilience.
• Maintain technical documentation, runbooks, and compliance records for audit and review purposes.
• Stay current on emerging threats, cybersecurity standards, and federal security mandates.

Required Qualifications:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field.
• Minimum of 4 years of experience in information security engineering or cloud security roles.
• Strong knowledge of cloud platforms (AWS, Azure, or Google Cloud) and security best practices.
• Experience with system security designs, threat modeling, risk assessment, and mitigation strategies.
• Understanding of hardware, software, and network security principles in cloud environments.
• Experience working in federal or DoD programs is preferred.
• Strong analytical, problem-solving, and communication skills.
• Ability to work effectively in a team-oriented, security-focused environment.

Preferred Qualifications:

• Hands-on experience with DevSecOps practices and security automation.
• Familiarity with Infrastructure-as-Code security controls and compliance tools.
• Knowledge of virtualization platforms (VMware, Hyper-V) and secure cloud configurations.

Certifications:

• IAT Level II certification required.
• Must obtain one or more Cloud Certifications within 6 months of hire (AWS, Azure, or Google Cloud preferred).