Cloud Data Platform Administrator

Location: Washington, DC
Duration: 9 Months (Possible Extension)
Work Model: Fully Remote (Hybrid candidates able to travel onsite up to twice per month preferred)

Position Overview

The Cloud Data Platform Administrator is the hands-on technical resource responsible for implementing, securing, and operating the Enterprise Data Platform (EDP).

This role owns end-to-end platform operations, security configuration, governance enablement, and cost control—ensuring the environment is compliant, reliable, and optimized for secure analytics and AI/ML workloads at scale.

Core Responsibilities

• Implement, secure, and operate AWS-based data platform environments

• Provision and administer AWS GovCloud infrastructure (networking, compute, storage, IAM, monitoring)

• Implement secure-by-default configurations aligned to agency security baselines

• Establish monitoring, alerting, dashboards, and operational health checks

• Maintain runbooks, documentation, and operational procedures

• Configure audit logging and access visibility (CloudTrail, CloudWatch)

• Support compliance evidence collection and security reviews

• Coordinate secure networking (PrivateLink, VPC, egress controls, firewall/proxy integration)

• Implement cost guardrails (auto-termination, cluster policies, scheduling, workload sizing)

• Produce cost optimization insights and capacity planning forecasts

• Automate platform configuration using Terraform, CLI, and REST APIs

• Manage CI/CD promotion across SDLC environments

• Support change control for upgrades, configuration updates, and integrations

• Build and manage POC environments with repeatable and controlled provisioning

• Manage third-party integrations including BI tools (e.g., Power BI)

• Facilitate user onboarding, workspace provisioning, and enablement documentation

Required Qualifications

• Bachelor’s degree in related field or equivalent practical experience

• 3+ years building AWS infrastructure using Terraform

• 3+ years building CI/CD pipelines (Azure DevOps or GitLab preferred)

• Strong AWS expertise:

  • IAM roles & policies

  • S3 security & bucket policies

  • KMS encryption key management

  • VPC networking concepts

  • CloudWatch & CloudTrail integration

  • PrivateLink

  • Secrets Manager / Systems Manager

  • Cross-account access patterns

• Identity & Access Management:

  • SSO concepts

  • SCIM provisioning

  • Group-based RBAC

  • Service principals

  • Least-privilege patterns

• Security fundamentals:

  • Secrets management

  • Secure connectivity

  • Audit logging

  • Access monitoring

• Automation & Infrastructure as Code (Terraform, CLI, REST APIs)

• Strong troubleshooting and incident communication skills

Highly Valued (Preferred) Qualifications

• SQL proficiency & data engineering fundamentals

• ETL/ELT workflow understanding

• Python or Scala familiarity

• Experience with compliance frameworks:

  • FedRAMP

  • HIPAA

  • SOC2

• SLA/SLO and incident management experience

• Vendor management experience (e.g., Databricks account teams)

• AWS Certified Solutions Architect (Associate or Professional)