-
ID
#32189494 -
Job type
Permanent -
Salary
TBD -
Source
SAIC -
Date
2022-01-20 -
Deadline
2022-03-21
Cloud Security Engineer
Hawaii, Pearlcity, 96782 Pearlcity USAPermanent
Vacancy expired!
Job ID: 2115481
Location: PEARL CITY , HI , US Date Posted: 2021-12-22Category: CyberSubcategory: Cybersecurity SpecSchedule: Full-timeShift: Day JobTravel: Yes, 25 % of the TimeMinimum Clearance Required: SecretClearance Level Must Be Able to Obtain: Top SecretPotential for Remote Work: NoDescription SAIC is looking for a highly motivated and experienced Cloud Security Engineer to support DoD programs by executing RMF and NIST processes to expedite customer accreditation of virtualized and cloud solutions. The selected candidate will possess expertise in RMF, NIST, and accreditation analysis, implementation, documentation, and execution. The selected candidate will be competent in DevSecOps, automation, and cloud service continuous accreditation, monitoring, auditing, and reporting. This position is contingent on funding and is anticipated to start in January 2022. Responsibilities:- Receives direction from Multi-Domain Solutions Architect.
- Evaluates, documents, and integrates required security controls for cloud and virtualization technologies.
- Develops automation for efficient deployment and auditing of security controls.
- Lead ongoing modernization of security and compliance.
- Maintains technical expertise relevant to securing customer workloads distributed across private and public cloud services.
- Evaluates new cloud and virtualization technologies for security and applicability.
- Automate security configuration management, auditing, and reporting.
- Ensure solution development follows the RMF 6-step process IAW DoDI 8510.01.
- Determine the required levels of Confidentiality, Integrity, and Availability for the systems under development and select appropriate controls.
- Develop, manage, and update System Security Plan and assessment and authorizations packages and provide any change to the ISSM or designee.
- Deliver RMF artifacts to the ISSM for inclusion in RMF packages.
- Assist the Government/ISSM in reviewing all cybersecurity documents as required for RMF process.
- Manage matrix of applicable DISA Security Technical Implementation Guides (STIGs) for portfolio solutions.
- Integrate with other technical leads to provide security insight and integration throughout solution lifecycle.
- Execute continuous scanning of deployed solutions.
- Manage POA&Ms.
- Assess and report cybersecurity risks through RMF processes.
- Develop mitigations and corrective actions for identified risks.
- Works on unusually complex technical problems and provides highly innovative and creative solutions.
- Acts as advisor to management and customers on advanced security topics.
- Works under consultative direction toward pre-determined long-range goals and objectives.
- Participates with senior managers to establish strategic plans and objectives.
- Remains abreast of the newest cloud security standards, architectures, best practices.
- BA/BS cybersecurity or related IT, System Engineering, or STEM degree. Additional four (4) years experience may be substituted for degree.
- Minimum (5) years of NIST controls implementation is required
- Minimum (5) years of RMF leadership experience is required
- Minimum (5) years of DoD security hardening and accreditation experience is required
- Minimum (5) years of executing information systems security assessments
- Expert level knowledge and hands on experience with Cloud Scripting and Automation is required
- Experience with ACAS is required
- Experience with NESSUS is required
- Experience with Splunk is required
- Experience with Agile Software Development Lifecycle (SDLC)
- Experience with DevOps/DevSecOps
- Experience with at least one other Cloud platform (AWS, GCP, etc.)
- Strong interpersonal and communication skills (verbal and written)
- DoD 8570.01-m IAM Level II (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO) or higher (CISM, CISSP (or Associate), GSLC, CCISO)
- Active DoD Secret (or above) clearance is required
- Able to obtain up to a Top Secret level DoD clearance upon request
Vacancy expired!
Report job