Cyber Infrastructure & Cloud Security Specialist (26-09)

Centerra-SRS•Aiken, SC

About The Position

Executes responsibilities to secure configuration, operation, and monitoring of cloud and hybrid environments, including access controls, logging, monitoring, and compliance validation. Assists with maintaining cloud resources in alignment with approved security baselines, organizational risk tolerance, and applicable cybersecurity requirements. Delivers reliable, secure, and efficient IT system operations. Maintains comprehensive documentation and provides responsive, effective communication and reporting to stakeholders. Performs vulnerability management support functions by assisting with vulnerability scanning, validating and analyzing findings, prioritizing remediation actions based on operational impact, and coordinating corrective actions with IT operations and system owners. Ensures vulnerabilities are documented, tracked, mitigated, or formally accepted in accordance with established risk management processes including-the Risk Management Framework (RMF), Defense Information Systems Agency Security Technical Implementation Guides (DISA STIGs), and National Institue of Standards and Technology (NIST) SP 800-53. Performs day-to-day cybersecurity operations by assisting with system hardening, secure configuration management, patching activities, governing Artificial Intelligence (AI), and control validation. Helps ensure systems are maintained in a secure and operational state consistent with cybersecurity policies, standards, and approved baselines. Maintains accurate, complete, and audit-ready documentation related to system configurations, vulnerability status, remediation actions, and security activities. Prepares technical reports and status updates to support audits and assessments. Participates in cybersecurity incident response and system recovery efforts by assisting with investigation activities, root-cause analysis, containment, and corrective actions under established procedures and direction. Works collaboratively with cybersecurity, IT operations, and stakeholders to support continuous monitoring, identify process improvements, and strengthen the organization’s overall security posture across on-premises and cloud environments. May be required to answer calls after hours and/or return to the site to assist with outages, troubleshooting, or to provide employee support. Must perform all responsibilities for environment, safety and health as defined in Procedure 1-3100 and adhere to the principles and functions of Integrated Safety Management.

Requirements

Associate's degree in Cybersecurity, Computer Science, Information Technology, or a related discipline.
Three years of experience in IT systems administration or cybersecurity, with a minimum of two years specifically in vulnerability management and supporting government systems.
Department of Defense 8570.01-M Information Assurance Technician (IAT) Level II certification is required.
Must have and / or be able to obtain/maintain a DOE "Q" security clearance.
Proficiency with tools and practices such as Assured Compliance Assessment Solution (ACAS) / Tenable, DISA, STIGs, RMF, NIST 800-53 controls, patching and configuration tools like Windows Server Update Services (WSUS), System Center Configuration Manager (SCCM), or Intune, along with endpoint protection platforms and network security tools.
Familiarity with cybersecruty tools, such as Darktrace, Cyclance, or CrowdStrike.

Nice To Haves

Microsoft / Azure Administrator certification preferred.

Responsibilities

Secure configuration, operation, and monitoring of cloud and hybrid environments.
Assist with maintaining cloud resources in alignment with approved security baselines.
Deliver reliable, secure, and efficient IT system operations.
Maintain comprehensive documentation and provide responsive, effective communication and reporting to stakeholders.
Perform vulnerability management support functions.
Ensure vulnerabilities are documented, tracked, mitigated, or formally accepted.
Perform day-to-day cybersecurity operations.
Maintain accurate, complete, and audit-ready documentation.
Prepare technical reports and status updates to support audits and assessments.
Participate in cybersecurity incident response and system recovery efforts.
Work collaboratively with cybersecurity, IT operations, and stakeholders to support continuous monitoring.
May be required to answer calls after hours and/or return to the site to assist with outages, troubleshooting, or to provide employee support.
Must perform all responsibilities for environment, safety and health as defined in Procedure 1-3100 and adhere to the principles and functions of Integrated Safety Management.