Information System Security Officer and Cloud Security Lead

Key Role:
Design, develop, and recommend integrated security system solutions that will ensure proprietary and confidential data and systems are protected. Provide technical engineering services for the support of integrated security systems and solutions. Interface with clients in the strategic design process to translate security and business requirements into technical designs. Configure and validate secure complex systems, tests security products, and systems to detect security weaknesses. Provide work leadership to junior employees.

Basic Qualifications:
-7+ years of experience with leading the analysis, assessment, design, and implementation of enterprise cybersecurity solutions
-Experience with an enterprise network infrastructure
-Experience in working with the National Institute of Standards National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA) requirements and reporting
-Experience with risk mitigation and selecting or designing appropriate security controls for implementation
-Experience with maintaining vulnerability scanning tool compliance and patch management, including ensuring IT staff pushes patches to all systems, maintains compliance with directives, manages changes to the system, and assess the security impact of the changes
-Experience with implementing an enterprise infrastructure team to monitor activities
-Experience with applying security systems concepts,jm \ requirements, design development, implementation, and integration to information systems
-Ability to obtain a security clearance
-BA or BS degree

Additional Qualifications:

-3+ years of experience as an Information Assurance officer (ISSO) for cloud solutions

-Experience with executing NIST 800-37, NIST 800-39, and NIST 800-53 and RMF 

-Experience with network security, vulnerability management, Assessment and Authorization (A&A), Authority to Operate (ATO) and incident response

-Experience with working on software development projects, including end-to-end life cycle and test engineering or QA

-Experience with the development of new cybersecurity hardening solutions for new systems and the remediation or design of security solutions for existing IT capabilities

-Experience with tools, including Netsparker, Fortify Webinspect, SonarQube, Splunk, or similar Cybersecurity tools

-Knowledge of continuous threat detection, operational technology, including ICS or SCADA, and current Cyber practices required to secure and defend such capabilities

-BA or BS degree in Science, Technology, Engineering, or Mathematics

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.