Cloud Cyber Security

About The Position

Requirements

• 5 years of experience
• USC with an active TS/SCI and Q eligibility
• Bachelor or higher degree
• Four-year degree in a relevant field with strong knowledge of core information security and cyber security principles, and their impact on IT system design and protection.
• Skilled in developing, applying, and integrating security technologies across applications, networks, telecommunications, and IT systems in both traditional and cloud environments.
• Knowledgeable in virtualization and modern IT concepts including software-defined networking, infrastructure as code, and zero trust architecture compliance (NIST SP 800- 207).
• Experienced in implementing and integrating cloud-focused cyber security technologies such as DevSecOps pipelines, containerization (Kubernetes, Docker), cloud-native SIEM, service mesh, identity management, data protection techniques, and serverless computing.
• Knowledge and experience in standards-based assessment and authorization of information systems, including evaluating security controls and determining overall risk.
• Experience executing Federal information system risk management processes, including those defined in NIST SP 800-37 and applying cybersecurity controls from NIST SP 800- 53.
• Experience executing contractor information system risk management processes such as those defined in NIST SP 800-171.
• Knowledge of Federal cloud-specific cybersecurity requirements, including DISA Cloud Computing Security Requirements Guide and Secure Cloud Computing Architecture (SCCA), with ability to assess cloud systems against these standards.
• Ability to evaluate IT, telecommunications, and computer systems for cybersecurity compliance and risk; assess major technical programs to resolve complex issues; and serve as a senior expert advising on the integration and implementation of cybersecurity requirements across IT programs.

Responsibilities

• Serve as a senior cyber security specialist responsible for administering cyber security policy.
• Performing reviews for assessment and authorization of Naval Nuclear Propulsion Program Information Technology (IT) systems, applications, and networks.
• Serves as an auditor for cyber security ensuring compliance with all published cyber security laws, directives, and policies for the Naval Nuclear Propulsion Program.
• Perform technical reviews of contractor, Department of the Navy, and Defense Industrial Base recommendations that affect the cyber security of IT, with a focus on ensuring secure implementation of cloud-based systems.
• Provide reviews to ensure compliance with all published cyber security laws, directives, and policies for the Naval Nuclear Propulsion Program.
• Provide a written report of the review with supporting analysis as requested to the buyer.
• Draft letters to document Programmatic disposition of these reviews in accordance with Naval Reactors Program policies.
• Participate in periodic cyber security evaluations at Program sites, to include cyber security review of traditional and cloud-based IT systems. Participation will be accomplished remotely and will not require travel.

Benefits

• medical
• dental
• vision
• paid time off
• 401(k)
• paid professional development reimbursement