Cloud Security Engineer

About The Position

Requirements

• 2+ years of experience securing computer systems, performing DoD authorization activities, and writing security plans
• 2+ years of experience with secure IT architecture and computing hardware and software
• Experience working with Cloud technologies, including AWS, Azure, or Infrastructure as a Service
• Experience developing Body of Evidence for DoD Risk Management Framework (RMF)
• Experience with scripts and Bash to provide automated scanning or monitoring solutions
• Experience supporting security reviews of software and system releases within a DevSecOps framework supporting recurring path-to-production software and system release activities
• Experience with terminology, processes, and regulations of IT system A&A for the RMF
• Top Secret clearance
• HS diploma or GED
• Ability to obtain DoD Directive 8570 or 8140 Series IAT Level II Certification within 90 days of hire date

Nice To Haves

• Experience assessing and authorizing network connections between on-premise and cloud
• Experience planning, implementing, and managing continuous monitoring solutions and working within an Agile-based project management framework
• Experience with Red Hat Enterprise Linux (RHEL) or Windows system administration
• Experience with the Army, DoD, or Intelligence Community (IC) Information Assurance (IA) or Information Systems
• Experience in Information System Security Engineer (ISSE) or Information System Security Officer (ISSO) roles
• Experience developing Body of Evidence artifacts for Certification and Accreditation (C&A) of systems under frameworks, including National Institute of Standards and Technology (NIST) Special Publication (SP) 800-Series, DoD Risk Management Framework (RMF), and Intelligence Community Directive (ICD) 503
• Knowledge of terminology and federal regulations related to specification, development, acquisition, and maintenance of IT systems
• Ability to work independently and as an integrated member of a project team
• Possession of excellent verbal and written communication skills
• TS/SCI clearance

Responsibilities

• Define, communicate, and implement cybersecurity architecture and administration processes for cloud environments across multiple network domains
• Collaborate across our cloud infrastructure delivery team and with stakeholders using an Agile process to ensure design, implementation, verification, and continuous monitoring of cloud solutions across multiple domains
• Develop Risk Management Framework (RMF) Body of Evidence artifacts, including system security plans and cybersecurity concept of operations documents for Amazon Web Services (AWS) operating within Cloud environments in alignment with existing RMF packages
• Support assessment and authorization activities to achieve and maintain Authority to Operate (ATO) on multiple networks
• Evaluate enhancements to Cloud environments against RMF controls and DoD Security Technical Implementation Guidance (STIG) requirements
• Support data capture and configuration within tools to enable achievement of the organization’s Assessment and Authorization (A&A) objectives
• Work without considerable direction
• Mentor and supervise team members, as needed

Benefits

• health benefits
• life benefits
• disability benefits
• financial benefits
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program