Secure Cloud Engineer

Dark Wolf Solutions is seeking a Secure Cloud Engineer to join their team. The role involves ensuring the security and integrity of operating systems, networks, and applications. Responsibilities include designing and implementing security measures, conducting risk assessments and digital forensics, leading incident response efforts, and developing security controls. The successful candidate should have expertise in secure operating systems, network management, and security monitoring systems in a Cloud environment. They should also be knowledgeable about security tools and technologies and be able to collaborate on threat modeling exercises.

• Designing, testing, and implementing secure operating systems, networks, and security monitoring systems in a Cloud environment
• Managing and fine-tuning IT security systems and applications to ensure optimal performance and threat detection
• Leading incident response efforts, guiding the organization's response to security breaches and vulnerabilities
• Performing digital forensics and eDiscovery actions to gather evidence and assess security incidents
• Conducting risk and vulnerability assessments at the network, system, and application levels
• Collaborating on threat modeling exercises to identify potential security weaknesses and devise mitigation strategies
• Developing and implementing effective security controls and operational risk mitigation measures
• Assisting in the planning and execution of security awareness programs to educate employees about best security practices
• Addressing a broad spectrum of security issues, including architectural designs, firewalls, electronic data traffic, and network access
• Researching, evaluating, and recommending new security tools, techniques, and technologies that align with the IT security strategy
• Utilizing commercial off-the-shelf (COTS) and government off-the-shelf (GOTS) tools, along with custom processes and procedures, to scan, identify, contain, mitigate, and remediate vulnerabilities and intrusions
• Ensuring compliance with required government policies such as NISPOM and DCID 6/3, and providing recommendations for process enhancements
• Validating established security requirements through thorough analyses and proposing additional security measures and safeguards as necessary
• Supporting formal Security Test and Evaluation (ST&E) processes mandated by accrediting authorities, including pre-test preparations, test participation, results analysis, and report preparation
• Conducting periodic reviews of system audits, tracking corrective actions until resolution
• Playing a role in the development, maintenance, and reporting of cyber metrics
• Delivering informative briefings to senior staff on security matters.

• Design, test, and implement secure operating systems, networks, and security monitoring systems in a Cloud environment
• Manage and fine-tune IT security systems and applications for optimal performance and threat detection
• Lead incident response efforts and guide the organization's response to security breaches and vulnerabilities
• Perform digital forensics and eDiscovery actions to gather evidence and assess security incidents
• Conduct risk and vulnerability assessments at the network, system, and application levels
• Collaborate on threat modeling exercises to identify potential security weaknesses and devise mitigation strategies
• Develop and implement effective security controls and operational risk mitigation measures
• Assist in planning and executing security awareness programs to educate employees about best security practices
• Address a broad spectrum of security issues, including architectural designs, firewalls, electronic data traffic, and network access
• Research, evaluate, and recommend new security tools, techniques, and technologies aligned with the IT security strategy
• Utilize commercial off-the-shelf (COTS) and government off-the-shelf (GOTS) tools, along with custom processes and procedures, to scan, identify, contain, mitigate, and remediate vulnerabilities and intrusions
• Ensure compliance with required government policies such as NISPOM and DCID 6/3 and provide recommendations for process enhancements
• Validate established security requirements through thorough analyses and propose additional security measures and safeguards as necessary
• Support formal Security Test and Evaluation (ST&E) processes mandated by accrediting authorities, including pre-test preparations, test participation, results analysis, and report preparation
• Conduct periodic reviews of system audits and track corrective actions until resolution
• Play a role in the development, maintenance, and reporting of cyber metrics
• Deliver informative briefings to senior staff on security matters.

• Competitive compensation range of $100,000.00 - $148,000.00
• Remote work opportunity
• Proximity to a Dark Wolf central office required
• Opportunity to work with a leading cybersecurity company
• Pivotal role in ensuring the security and integrity of operating systems, networks, and applications
• Designing, testing, and implementing secure operating systems, networks, and security monitoring systems in a Cloud environment
• Managing and fine-tuning IT security systems and applications for optimal performance and threat detection
• Leading incident response efforts and guiding the organization's response to security breaches and vulnerabilities
• Performing digital forensics and eDiscovery actions to gather evidence and assess security incidents
• Conducting risk and vulnerability assessments at the network, system, and application levels
• Collaborating on threat modeling exercises to identify potential security weaknesses and devise mitigation strategies
• Developing and implementing effective security controls and operational risk mitigation measures
• Assisting in the planning and execution of security awareness programs
• Addressing a broad spectrum of security issues, including architectural designs, firewalls, electronic data traffic, and network access
• Researching, evaluating, and recommending new security tools, techniques, and technologies
• Utilizing commercial off-the-shelf (COTS) and government off-the-shelf (GOTS) tools
• Ensuring compliance with required government policies such as NISPOM and DCID 6/3
• Validating established security requirements and proposing additional security measures as necessary
• Supporting formal Security Test and Evaluation (ST&E) processes
• Conducting periodic reviews of system audits and tracking corrective actions
• Playing a role in the development, maintenance, and reporting of cyber metrics
• Opportunity to deliver informative briefings to senior staff on security-related matters
• Opportunity to work collaboratively in cross-functional teams
• U.S. citizenship and active Secret security clearance or higher required