Cyber Security Administrator - Mid

Nalley Consulting•Doral, FL

1d•Onsite

About The Position

Join the Nalley Consulting team at Southcom HQ. This role involves ensuring compliance with DoD cybersecurity mandates, implementing security monitoring, conducting vulnerability assessments, and enforcing zero-trust security principles. The Cyber Security Administrator will maintain system security documentation, lead Authority to Operate (ATO) processes, and submit Cybersecurity Compliance & Risk Assessment Reports.

Requirements

Bachelor’s degree in Cybersecurity, Information Assurance, or a related field, or five (5) years of equivalent experience in cybersecurity operations.
Knowledge and capability to implement and manage security controls, risk assessments, and compliance measures across GovCloud-hosted environments, including Azure and AWS.
Proficiency in NIST 800-53 Rev. 5, FedRAMP, DoD RMF, and IL-4/IL-5 security mandates.
Experience in security information and event management (SIEM), role-based access control (RBAC), vulnerability scanning, and incident response.
Expertise in cloud-native security tools, Zero Trust Architecture (ZTA), and Security Technical Implementation Guides (STIGs).
Extensive experience with the Authority to Operate (ATO) process, including documentation, submission, and ongoing compliance monitoring, and ability to demonstrate successful completion and maintenance of ATOs for programs or other capabilities within a DoD or federal environment.
Demonstrated experience in implementing and enforcing security controls for cloud infrastructure, ensuring compliance with DoD security frameworks.
Demonstrated experience in managing security configurations, conducting penetration testing, and implementing SIEM solutions (e.g., Microsoft Sentinel, AWS Security Hub).
Demonstrated experience in performing risk assessments, continuous security monitoring, and developing mitigation strategies in cloud and hybrid environments.
Demonstrated experience in administering RBAC and enforcing least-privilege access policies for mission-critical applications.
Demonstrated experience in managing the ATO lifecycle, including the preparation of System Security Plans (SSP), Security Assessment Reports (SAR), and Plans of Action & Milestones (POA&M).
Demonstrated experience in coordinating with DoD cybersecurity officials to achieve and sustain ATOs for cloud-based and on-premises environments.

Responsibilities

Ensure compliance with DoD cybersecurity mandates, including NIST 800-53 Rev. 5, FedRAMP, Risk Management Framework (RMF), and DoD IL-4/IL-5 security policies.
Implement security monitoring solutions, conduct vulnerability assessments, and enforce zero-trust security principles.
Maintain system security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action & Milestones (POA&M), ensuring continuous compliance and audit readiness.
Lead and track the progress of Authority to Operate (ATO) processes, ensuring all security controls and risk assessments are documented and submitted for approval.
Submit the Cybersecurity Compliance & Risk Assessment Report, summarizing vulnerability findings, risk mitigation strategies, and security control implementation status.