Key Role:

Define, communicate and implement cybersecurity architecture and administration processes for cloud environments across multiple network domains. Collaborate across our cloud infrastructure delivery team and with stakeholders using an Agile process to ensure design, implementation, verification, and continuous monitoring of cloud solutions across multiple domains. Develop Risk Management Framework (RMF) Body of Evidence artifacts, including system security plans and cybersecurity concept of operations documents for Amazon Web Services (AWS) operating within Cloud environments in alignment with existing RMF packages. Support assessment and authorization activities to achieve and maintain Authority to Operate (ATO) on multiple networks. Evaluate enhancements to Cloud environments against applicable RMF controls and DoD Security Technical Implementation Guidance (STIG) requirements. Support data capture and configuration within tools to enable achievement of the organization’s Assessment and Authorization (A&A) objectives. Work without considerable direction; mentor and supervise team members, as needed.

Basic Qualifications:

• 5+ years of experience with securing computer systems, performing DoD accreditation activities, and writing security plans

• 5+ years of experience with secure IT architecture, computing hardware, and software

• 5+ years of experience with DoD Assessment and Authorization (A&A) processes, activities, standards, and available analytic tools

• Experience with scripts and Bash to provide automated scanning or monitoring solutions

• Experience supporting security reviews of software and system releases within a DevSecOps framework supporting recurring path-to-production software and system release activities

• Experience with terminology, processes, and regulations applicable to IT system assessment and authorization for the Risk Management Framework (RMF)

• Ability to work independently and as an integrated member of a project team

• TS/SCI clearance

• HS diploma or GED

• Ability to complete DoD Directive 8570 or 8140 Series IAT Level II certification requirements within 90 days of start date

Additional Qualifications:

• Experience with planning, implementing, monitoring, and managing continuous monitoring solutions

• Experience in working with Cloud technologies, including Amazon Web Services (AWS) or Azure, such as Infrastructure as a Service

• Experience with Red Hat Enterprise Linux (RHEL) or Windows system administration

• Experience with the U.S. Army, DoD, or Intelligence Community Information Assurance (IA), including Information Systems

• Experience in Information System Security Engineer (ISSE) or Information System Security Officer (ISSO) roles

• Experience with developing Body of Evidence artifacts for Certification and Accreditation (C&A) of systems under frameworks, including National Institute of Standards and Technology (NIST) Special Publication (SP) 800-Series, DoD Risk Management Framework (RMF), and Intelligence Community Directive (ICD) 503

• Experience in working within an Agile based project management framework

• Knowledge of terminology and federal regulations applicable to specification, development, acquisition, and maintenance of IT systems

• Possession of excellent oral and written communication skills

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.