Cloud Security Analyst

About The Position

Requirements

• BS degree and 8-12 years of prior relevant experience or Masters with 6-10 years of prior relevant experience.
• Candidate must possess an active DOD TS/SCI level security clearance, and be eligible to obtain and maintain a CI Poly
• Possess one Cloud Certification (e.g. CCSP, AWS CSAA, Oracle Cloud Infrastructure Architect, Azure Administrator)
• Maintain expert knowledge of endpoint and networking security controls; provide updates to security control guidance.
• Familiarity with all related aspects of cybersecurity operations and security architecture & engineering.
• In-depth knowledge of network and application protocols, cyber vulnerabilities and exploitation techniques and cyber threat/adversary methodologies (TTPs).
• IAT Level II Baseline Certification (e.g. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP)
• Ability to translate highly technical matter to non-technical audience
• Excellent communication skills
• In-depth experience with security domains and industry best practices; business continuity and disaster recovery, emerging technology
• Proficient at data on-boarding activities including routing, parsing, and normalizing events

Nice To Haves

• Prior experience with one or more of the following tools: ASV Expander SIEM Cloud Native Tools
• Prior experienced with DISA and DISA's support to mission partners
• TS/SCI w/CI Poly Preferred
• Proficient in cloud hosted networks
• Master's degree in IT, Cybersecurity, or related field.

Responsibilities

• Provide analysis of cloud architectures, technologies, policies, information and analytic data.
• Develop cybersecurity and risk assessment methodologies and procedures to support prevention, detection, and mitigation of anomalous activity, vulnerabilities and inefficiencies in the cloud.
• Perform cyber situational awareness activities and provide analysis and recommendations.
• Prepare and perform briefings appropriate for senior leadership.
• Conduct micro and macro analysis of enterprise cybersecurity defensive strategies in order to enable operational effectives, defense, and command and control.
• Analyze policy, program management office managed systems, hardware, and software, cloud, network infrastructure in order to recommend methods and strategies that reduce and/or managed impacts.
• Support and collaborate with designated third-parties in security services (e.g., intrusion prevention and detection, antivirus protection) in accordance with security requirements as set out in DOD policies, standards and operations procedures manuals, and leading security practices.
• Continuously improve monitoring capabilities and automation in the cloud.
• Ensure all system logs, application logs, and event logs are sent to the security operations team and the insider threat team in real time.