Cloud Cybersecurity Manager (CCM) (15.35)

OCT Consulting-posted 2 days ago
Full-time • Manager
Onsite • Washington, DC
101-250 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Cloud Cybersecurity Manager (CCM) OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology. Responsibilities and Duties OCT currently has an opening for a Cloud Cybersecurity Manager (CCM) to work with our federal client. The CCM will be the authoritative lead for all cybersecurity measures, compliance, and risk management within the agency’s Amazon Web Services (AWS) GovCloud environment. This role will ensure continuous compliance with all DoD and Federal security mandates, including the implementation of the Zero Trust Architecture (ZTA). Day to day responsibilities include: ● Deliver comprehensive cybersecurity services to comply with DoD, Defense Information Systems Agency (DISA), U.S. Cyber Command, and agency directives. ● Ensure continuous compliance with all cybersecurity mandates. ● Provide National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) support. ● Implement advanced security architectures for predictive threat detection and response. ● Conduct vulnerability assessments. ● Manage Configuration Management (CM) and control. ● Maintain compliance with all cybersecurity policies. ● Provide continuous monitoring and reporting of security controls. ● Ensure compliance with the DoD Zero Trust Architecture (ZTA). ● Ensure the secure operation of the agency’s IT enterprise, which enables the primary objective of O&E operations to function. ● Maintain the active Authorization to Operate (ATO) status, which supports DoD Cloud Computing Security Requirements Guide (CC SRG) Impact Level (IL) 2, IL4, and IL5 information system operations 24 hours a day, seven days a week (24/7). ● Manage a team of up to 30 cybersecurity professionals.

  • Deliver comprehensive cybersecurity services to comply with DoD, Defense Information Systems Agency (DISA), U.S. Cyber Command, and agency directives.
  • Ensure continuous compliance with all cybersecurity mandates.
  • Provide National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) support.
  • Implement advanced security architectures for predictive threat detection and response.
  • Conduct vulnerability assessments.
  • Manage Configuration Management (CM) and control.
  • Maintain compliance with all cybersecurity policies.
  • Provide continuous monitoring and reporting of security controls.
  • Ensure compliance with the DoD Zero Trust Architecture (ZTA).
  • Ensure the secure operation of the agency’s IT enterprise, which enables the primary objective of O&E operations to function.
  • Maintain the active Authorization to Operate (ATO) status, which supports DoD Cloud Computing Security Requirements Guide (CC SRG) Impact Level (IL) 2, IL4, and IL5 information system operations 24 hours a day, seven days a week (24/7).
  • Manage a team of up to 30 cybersecurity professionals.
  • Must be a U.S. Citizen (Required)
  • Active Top Secret Clearance / Favorably Adjudicated Tier 5 Investigation (Required)
  • Must be in the National Capital Region and available to support on-site as required (Required)
  • Bachelor’s degree in computer science, IT, information systems, or cybersecurity (Required)
  • 8+ years of experience in managing cybersecurity projects of $100M+ within a Cloud environment (Required)
  • 8+ years of experience with the NIST RMF, NIST SP 800-53, STIGs, Security Content Automation Protocol (SCAP), Information Assurance Vulnerability Alerts (IAVAs), and Federal Information Security Management Act (FISMA) Certified Information Systems Security Professional (CISSP), and relevant certifications in NIST RMF or ZTA
  • 8+ years of experience analyzing, assessing, and implementing corrective actions based on vulnerability management and penetration testing
  • 8+ years of experience supporting DoD defensive cyber operational activities, including, but not limited to, information system protection, defense, response (incident handling), reporting, and recovery (Required)
  • Deep understanding of cloud operations and cybersecurity compliance within a DoD environment (e.g., AWS GovCloud, ZTA, NIST RMF) (Required)
  • Expert knowledge of DoD CC SRG Impact Levels (IL) 2, 4, and 5. Demonstrated experience with cloud security postures in AWS GovCloud (Required)
  • Experience managing large-scale Agile development teams and programs (Required)
  • Possess one of the following certifications: CISM, Certified Information Systems Security Officer (CISSO), Federal IT Security Professional-Manager (FITSP-M), GIAC Certified Intrusion Analyst Certification (GCIA), GIAC Cloud Security Automation (GCSA), GIAC Certified Incident Handler (GCIH), GIAC Security Leadership Certification (GSLC), Global Industrial Cyber Security Professional Certification (GICSP), CISSP-ISSMP, or CISSP (Required)
  • Medical, Dental, and Vision insurance
  • Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee’s gross salary
  • Paid Time Off and Standard Government Holidays
  • Life Insurance, Short- and Long-Term disability benefits
  • Training Benefits
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service