Information Security Risk Specialist
About The Position
Information Security Risk Specialist The Opportunity: As an Information Security Risk Specialist on our team, you will leverage your expertise to collaborate closely with contractor and DoD government system owners, as well as system administrators and developers, to identify cyber risks, analyze applicable policies, and develop comprehensive mitigation strategies. Utilizing insights from subject matter experts (SMEs) and engineers, you will evaluate technical infrastructure and personnel dynamics to assess the full threat landscape. From there, you will guide clients through actionable remediation plans, delivering clear and impactful solutions through presentations, detailed white papers, and well-defined milestones to ensure effective risk management and cybersecurity resilience. You’ll work with your client to translate security concepts so they can make the best decisions to secure critical DoD systems. This is your opportunity to act as an information security SME while broadening your skills in DevSecOps and cloud security. Join us. The world can’t wait.
Requirements
- 5+ years of experience working in a professional IT environment
- 3+ years of experience in cybersecurity and Assessment and Authorization (A&A) supporting DoD environments
- Experience leading DoD ATO packages, performing A&A and RMF, and conducting risk assessments for DoD systems hosted in AWS, Azure, or hybrid cloud environments
- Experience performing technical evaluations and security control assessments in cloud-native and containerized environments
- Experience interfacing with engineering teams to align DevSecOps pipelines with cybersecurity policies
- Experience with compliance testing tools such as ACAS, SCAP, STIGs or SRGs, eMASS, and Xacta
- Experience with NIST SP 800-53, CNSSI 1253, artifact generation, SSPs, POA&Ms, SAPs, risk assessments, and continuous monitoring
- TS/SCI clearance
- HS diploma or GED
- DoD 8570 Level II Security+ Certification
Nice To Haves
- Experience with DevSecOps, Path-to-Production, and CI/CD
- Experience administering Red Hat Enterprise Linux 8 or Windows Server 2012 or higher
- Experience with cloud tools and container orchestration security
- Knowledge of STIG and compliance scans
- Ability to advise stakeholders on cloud security strategies, container orchestration security such as Kubernetes and Rancher, and platform hardening
- Possession of excellent verbal and written communication skills
- Bachelor's degree in IT or Cybersecurity
Benefits
- health
- life
- disability
- financial
- retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
High school or GED
Number of Employees
5,001-10,000 employees
