Cloud Cybersecurity Subject Matter Expert

GuidehouseAlexandria, VA
98d
Match Resume

About The Position

Provide comprehensive IT, cybersecurity, and data operations services for DoD program in AWS GovCloud. These services include information system, application, network, storage, and cybersecurity design, implementation, optimization, and sustainment. Design and maintain a high-availability, scalable system architecture, and develop proactive cybersecurity measures including applying hardening measures to AWS GovCloud environments, ensuring control enforcement and alignment with the DoD’s cyber and privacy mandates. Provide comprehensive NIST RMF support via an instance of the DoD Enterprise Mission Assurance Support Service (eMASS) platform, including Assured Compliance Assessment Solution (ACAS) assessments and Plan of Actions and Milestones (POAM) remediation. Develop project artifacts and system documentation to support cloud cybersecurity initiatives across the program. Develop and maintain a ZTA across DoD Impact Level (IL) 2, IL4, and IL5 cloud infrastructure, ensuring continuous compliance with DoD Zero Trust mandates and guidelines. Design and implement advanced security architectures for predictive threat detection, response, and real-time security insights to support emerging threat identification and cloud infrastructure resilience. Ensure that systems, applications, and components comply with DISA’s Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs). Conduct full-scope vulnerability assessments and penetration testing of new and modified applications, servers, databases, and infrastructure components before deployment. Monitor and analyze program cyber resources (e.g., threat detection and response logs, Security Information and Event Management (SIEM) logs, anomaly monitoring and response, account aging and role assessments) and alert stakeholders of abnormal findings. Develop, recommend, and implement automated incident response workflows to enhance the speed and efficiency of handling cybersecurity incidents through incident lifecycle management. Establish interactive and advanced threat simulation labs and scenario planning exercises to prepare for future cyber challenges. Manage and provide expert-level 24/7/365 security monitoring and detection support, monitoring user activities and detecting anomalies that may indicate insider threats or compromised accounts.

Requirements

  • A bachelor’s degree in computer science, IT, information systems, or a related field.
  • A minimum of EIGHT (8) years of experience in managing cybersecurity projects of similar size and complexity within a cloud environment.
  • A minimum of EIGHT (8) years of experience with the NIST RMF, NIST SP 800-53, STIGs, SCAP, IAVAs, and FISMA.
  • Experience providing cybersecurity design, operations, and enhancement support for AWS GovCloud.
  • Possess one of the following certifications: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP, or CISSP.
  • Must have an ACTIVE and MAINTAINED DOD or Federal Top Secret Clearance.

Nice To Haves

  • Experience analyzing, assessing, and implementing corrective actions based on vulnerability management and penetration testing.
  • Experience supporting DoD defensive cyber operational activities.

Responsibilities

  • Provide comprehensive IT, cybersecurity, and data operations services for DoD program in AWS GovCloud.
  • Design and maintain a high-availability, scalable system architecture.
  • Develop proactive cybersecurity measures including applying hardening measures to AWS GovCloud environments.
  • Provide comprehensive NIST RMF support via an instance of the DoD Enterprise Mission Assurance Support Service (eMASS) platform.
  • Develop project artifacts and system documentation to support cloud cybersecurity initiatives.
  • Develop and maintain a ZTA across DoD Impact Level (IL) 2, IL4, and IL5 cloud infrastructure.
  • Design and implement advanced security architectures for predictive threat detection and response.
  • Ensure compliance with DISA’s Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs).
  • Conduct full-scope vulnerability assessments and penetration testing.
  • Monitor and analyze program cyber resources and alert stakeholders of abnormal findings.
  • Develop and implement automated incident response workflows.
  • Establish interactive and advanced threat simulation labs.
  • Manage and provide expert-level 24/7/365 security monitoring and detection support.

Benefits

  • Medical, Rx, Dental & Vision Insurance
  • Personal and Family Sick Time & Company Paid Holidays
  • Position may be eligible for a discretionary variable incentive bonus
  • Parental Leave and Adoption Assistance
  • 401(k) Retirement Plan
  • Basic Life & Supplemental Life
  • Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
  • Short-Term & Long-Term Disability
  • Student Loan PayDown
  • Tuition Reimbursement, Personal Development & Learning Opportunities
  • Skills Development & Certifications
  • Employee Referral Program
  • Corporate Sponsored Events & Community Outreach
  • Emergency Back-Up Childcare Program
  • Mobility Stipend

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Education Level

Bachelor's degree

Number of Employees

5,001-10,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service