LightFeather

About the Company

LightFeather is a Woman Owned Small Business (WOSB) and Service Disabled Veteran Owned Small Business (SDVOSB). We are a forward leaning and edgy startup that is ready to change the world and improve the federal government, one organization at a time.

We don't just stay on the cutting edge, we push the edge further. LightFeather was founded in 2018 to be a different type of digital services company. Our mission is to empower people to get stuff done, to continuously drive business value and make a positive impact wherever we go. We are not afraid to disrupt and innovate to get stuff done with a focus on delivering business value continuously. We iterate and continuously improve processes, methodologies and products. Our software design and development is innovative from the start. Building sleek visualizations, we focus on delivering efficiencies and automated solutions to help our customers see their business processes in a totally new light. We transform business processes by infusing modern technologies and methodologies.

Listed Jobs

Company Name

LightFeather

Job Title

Cloud Security Engineer

Job Description

Job title: Cloud Security Engineer Role Summary: Design, implement, and secure multi‑cloud (AWS, Azure, GCP) architectures at scale, embedding DevSecOps practices into development lifecycles. Lead threat modeling, secure coding guidance, and automation of security controls across commercial, GovCloud, and DoD IL6 environments. Expactations: - Secure infrastructure across multiple accounts or subscriptions, ensuring compliance with CIS, NIST 800‑53, FedRAMP, and other frameworks. - Deliver automated guardrails, CI/CD security scans, and incident response tooling for high‑volume cloud workloads. - Collaborate with architects, engineers, auditors, and stakeholders to achieve authorization to operate (ATO) and other compliance milestones. - Mentor a team of security and platform engineers, driving adoption of secure practices in agile DevSecOps teams. Key Responsibilities: - Architect and deploy secure cloud environments (Commercial, GovCloud, IL6). - Define and enforce security baselines (CIS, NIST, FedRAMP). - Conduct architecture reviews, threat modeling, and provide secure design guidance. - Build and maintain Terraform IaC modules for hundreds of accounts/projects. - Integrate CI/CD pipelines with SAST, DAST, IaC scanning, and container security tools. - Develop automated remediation pipelines and guardrails. - Support ATO processes, documentation, and stakeholder reporting. - Implement centralized logging, monitoring, and incident response across multi‑cloud stacks. - Lead a team of security/platform engineers on cloud security and automation practices. - Act as subject matter expert for stakeholders, architects, and engineering leads. Required Skills: - 5+ years cloud security experience (AWS, Azure, GCP, Oracle). - Advanced hands‑on experience securing and automating multi‑cloud environments. - Native cloud security tools: Security Hub, GuardDuty, Defender for Cloud, SCC, etc. - IaC expertise: Terraform, CloudFormation, ARM/Bicep. - CI/CD platforms: GitLab, GitHub Actions, etc. - Proficiency in at least one programming/scripting language (Python, Go, PowerShell, Bash). - Deep understanding of IAM/RBAC, KMS/Key Vault, networking, encryption. - Familiarity with application security standards (OWASP ASVS/Top 10, CWE 25). - Experience aligning controls with NIST 800‑53, FedRAMP, CIS Benchmarks. - Proven track record embedding security in Agile/DevSecOps pipelines. - Strong communication, stakeholder management, and leadership. Required Education & Certifications: - Bachelor’s degree in computer science or related technical field (or equivalent experience). - Certifications desired: AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer, OSCP, CISSP.

Alexandria, United states

On site

Mid level

18-11-2025

Company Name

LightFeather

Job Title

Information System Security Officer (ISSO)

Job Description

Job title: Information System Security Officer (ISSO) Role Summary: Serve as the Information System Security Officer for assigned enterprise systems, responsible for managing security and compliance requirements, overseeing the Certification & Accreditation (C&A) lifecycle, maintaining system security documentation, and ensuring adherence to federal security standards such as NIST 800‑53, 800‑37, and FISMA. Expactations: - U.S. Citizenship and active Public Trust (or higher) security clearance. - Minimum 4 years of C&A experience on federal or enterprise IT systems. - Proven ability to draft and maintain SSPs, CPs, ISAs, and related artifacts. - Strong command of NIST risk management frameworks and vulnerability management tools. - Excellent written and oral communication skills for documentation and stakeholder coordination. Key Responsibilities: - Perform the role of ISSO, managing all security and compliance tasks for assigned systems. - Lead the C&A process: maintain, update, and submit system security documentation. - Draft and maintain System Security Plans, Contingency Plans, Interconnection Security Agreements, and other required documents. - Utilize GRC platforms to keep security artifacts current and complete for Authority to Operate (ATO). - Implement NIST 800‑53 and 800‑37 controls, manage Plans of Action and Milestones (POA&Ms). - Conduct security audits, review logs, and identify vulnerabilities or misconfigurations. - Use Tenable Nessus for vulnerability scanning and remediation. - Support security requirements for AWS GovCloud (US) or other cloud environments to meet federal standards. - Coordinate with stakeholders, developers, and system owners to ensure FISMA compliance and other oversight obligations. - Prepare and submit complete system security authorization packages for Authorization Official approval. Required Skills: - Advanced knowledge of NIST 800‑53, 800‑37, RMF, and federal security frameworks. - Proficiency with GRC tools and security compliance platforms. - Hands‑on experience with vulnerability management tools (Tenable Nessus). - Understanding of OS, network architecture, web application, and database security principles. - Experience with cloud security implementations (AWS GovCloud). - Strong audit and log review capabilities. - Exceptional technical writing and documentation skills. - Effective stakeholder communication and collaboration. Required Education & Certifications: - U.S. Citizenship and active Public Trust or higher clearance required. - Bachelor’s degree in Computer Science, Information Security, or related field preferred (not explicitly required). - Security certifications such as Security+, CISSP, or CEH highly desirable. - Relevant federal security or enterprise IT certifications are an advantage.

Arlington, United states

On site

Junior

18-11-2025

Company Name

LightFeather

Job Title

ServiceNow Business Analyst

Job Description

Job Title: ServiceNow Business Analyst Role Summary: Translate business needs into scalable, automated ServiceNow solutions that enhance service delivery, visibility, and operational efficiency. Drive federal IT modernization by improving ITSM, ITOM, and CMDB processes through configuration, reporting, and workflow optimization. Expectations: - Possess an active U.S. Secret Clearance. - Demonstrate 5+ years of business analysis experience with at least 2 years focused on ServiceNow. - Deliver high‑quality requirements, documentation, and test plans that translate complex business needs into functional technical solutions. Key Responsibilities: 1. Capture, analyze, and document business requirements, user needs, and use cases for ServiceNow initiatives. 2. Analyze current workflows, identify bottlenecks, and recommend automation opportunities across ITSM, ITOM, and CMDB modules. 3. Translate requirements into functional specifications; support configuration and customization of applications, forms, workflows, dashboards, and reports. 4. Design and execute test plans/test cases; validate configurations and enhancements against acceptance criteria. 5. Act as primary liaison between business users and technical teams, facilitating workshops, demos, and reviews to ensure alignment and stakeholder satisfaction. 6. Produce and maintain process maps, user stories, functional requirements, and technical handoff documentation to support ongoing operations and continuous improvement. Required Skills: - Business analysis & requirements gathering, including process mapping and creation of user stories. - Deep knowledge of ServiceNow ITSM, ITOM, and CMDB modules and platform capabilities. - Experience with ServiceNow configuration, scripting (JavaScript, Glide API), and dashboard/report creation. - Familiarity with Agile development, JIRA or Azure DevOps. - Strong analytical, problem‑solving, and critical‑thinking abilities. - Excellent written and verbal communication; ability to collaborate across technical and business teams. Required Education & Certifications: - Active U.S. Secret Clearance (mandatory). - Bachelor’s degree in Computer Science, Information Systems, or related field preferred. - ServiceNow Certified System Administrator (CSA) or equivalent certification is preferred.

Alexandria, United states

On site

Mid level

01-12-2025

Company Name

LightFeather

Job Title

AWS Cloud Engineer

Job Description

**Job Title:** AWS Cloud Engineer **Role Summary:** Design, deploy, and manage secure, scalable AWS infrastructure for federal initiatives, ensuring compliance with FedRAMP, NIST, and DoD standards while driving DevOps automation and continuous delivery. **Expectations:** - Deliver high‑availability cloud solutions that meet mission objectives. - Maintain rigorous security posture and regulatory compliance. - Collaborate closely with government agencies, DevOps teams, and security engineers. - Obtain and sustain U.S. security clearance. **Key Responsibilities:** - Architect and maintain AWS services (EC2, VPC, RDS, S3, EBS, IAM). - Automate resource provisioning with IaC tools (Terraform, CloudFormation, Ansible). - Implement security best practices—IAM roles, Shield, Macie, encryption, FedRAMP. - Build and manage CI/CD pipelines using GitLab, Jenkins, and AWS CodePipeline. - Monitor performance and troubleshoot via CloudWatch, CloudTrail, and Log Insights. - Configure networking, load balancing, and hybrid integrations (Route 53, ELB, Direct Connect). - Lead migration to AWS and support hybrid/cloud environments. - Develop automation scripts (Python, PowerShell, Bash) for operational efficiency. - Design disaster‑recovery and backup strategies using S3 lifecycle, AWS Backup, snapshots. - Coordinate with stakeholders to align solutions with government needs. **Required Skills:** - Deep knowledge of AWS services and architecture. - Expertise in IaC: Terraform, CloudFormation, Ansible. - DevOps experience: GitLab, Jenkins, AWS CodePipeline. - Cloud security: IAM, encryption, Shield, Macie, FedRAMP, NIST. - Monitoring & observability: CloudWatch, CloudTrail, Log Insights. - Networking: VPC, Route 53, VPN, Direct Connect, ELB. - Scripting: Python, PowerShell, Bash, YAML/JSON. - Multi‑cloud & hybrid concepts (AWS, Azure, on‑prem). - Optional: AWS Lambda, Kubernetes (EKS), microservices. **Required Education & Certifications:** - 5+ years in cloud engineering, DevOps, or systems administration focused on AWS. - U.S. citizenship; must be willing to obtain a security clearance. - AWS Certified Solutions Architect – Associate (or equivalent AWS certification).

Alexandria, United states

Hybrid

Mid level

01-12-2025