Cloud Platform and Software Security Engineer, Lead in Washington, DC at Booz Allen Hamilton Inc.

Date Posted: 9/14/2018

Job Snapshot

Job Description

Job Number: R0035325

Cloud Platform and Software Security Engineer, Lead

Key Role:

Partner with federal clients to implement comprehensive Cybersecurity solutions for public Platform and Software as a Service (PaaS and SaaS) Clouds in complex, high impact, and highly regulated environments. Lead a team of engineers in support of client engagements by delegating tasks, overseeing the quality of work produced, and providing mentorship. Analyze existing systems and business requirements to create requirements traceability matrices, designs, analyses of alternatives, and implementation plans. Leverage deep technical expertise, including knowledge of IT security compliance policies and expertise in administering virtual and Cloud computing solutions to advise and educate both technical and non-technical members of the client's organization and the firm to achieve objectives. Provide hands-on technical engineering and administration support in the development of client and investment solutions. Apply automation, orchestration, and DevOps concepts and tools to accelerate implementation and operations activities. Conduct research on emerging technologies and industry trends, including Cloud Access Security Brokers (CASBs) and Security Automation and Orchestration (SAO) for impacts to client challenges. Work closely with clients, leadership, and vendors to gain approvals, overcome obstacles, and reach consensus in the furtherance of the client's mission and the firm's Cloud security strategy.


Basic Qualifications:

-8+ years of experience with designing, engineering, and implementing comprehensive IT systems for large enterprise or federal organizations while applying security best practices

-3+ years of experience with integrating and supporting production PaaS and SaaS, Cloud solutions, including Salesforce.com, Acquia, ServiceNow, Cloud.gov, Google G-Suite, or Box, and leading teams of technical staff in the creation of IT systems, technical artifacts, and client deliverables

-Experience with implementing Single-Sign-On and Identity Federation solutions and collecting and analyzing security, event, configuration, and management logs from Cloud-based sources

-Experience with one or more of the following languages: .NET, Java, PHP, Perl, Python, or Ruby

-Knowledge of IT security concepts, including Identity and Access Management, Encryption, Intrusion Prevention, Auditing, Data Loss Prevention, Compliance, and Vulnerability Management

-Knowledge of the differences between traditional IT, Cloud, and Hybrid architecture strategies

-Ability to automate the provisioning and configuration of IT environments, including tools, such as CloudFormation, Puppet, Chef, Ansible, or PowerShell

-Ability to obtain a security clearance
-BA or BS degree

-Security+ Certification or ability to obtain within 30 days


Additional Qualifications:

-Experience with Cloud Access Security Broker (CASB) offerings, including Skyhigh and Cloudlock

-Experience with using Splunk to ingest new data sources and develop reports, dashboards, and alerts

-Experience with private Cloud platforms, including CloudFoundry and OpenShift

-Experience with implementing secure code development processes, including CI and CD pipelines, Static and Dynamic Code Analysis, and version control

-Experience with developing federal authorization packages, including a Systems Security Plan (SSP) for achieving an Authorization to Operate (ATO)
-Knowledge of FedRAMP, FISMA, NIST, STIG, CIS, and other IT security and compliance frameworks, regulations, and control libraries

-Possession of excellent oral and written communication skills, including public speaking, prior publications, and speaking engagements in relevant industry or vendor forums

-CISSP Certification

-Cloud Vendor Certification


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

CDM, SIG2017

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.