Cloud Security SME
Washington, District of Columbia, United States - Remote
Maveris
Maveris is an IT and cybersecurity company committed to helping organizations create secure digital solutions to accelerate their mission. We are Veteran-owned and proud to serve customers across the Federal Government and private sector.Maveris is an IT and cybersecurity services company committed to helping organizations create secure digital solutions to accelerate their mission. We are Veteran-owned and proud to serve customers across the Federal Government and private sector. We have an opening for a full-time, permanent Cloud Security SME to join our talented, dynamic team in support of a large Federal Government customer.
The Cloud Security SME will play a pivotal role in our team's success on a large Federal Government SOC contract for the Department of Veteran's Affairs. They will lead and provide expert guidance on all aspects of cloud security for the VA. This role involves maintaining a fully updated inventory of cloud systems and assets, overseeing the reporting and tracking of remediation or risk acceptance for key vulnerabilities, and ensuring compliance with VA cloud security policies. The SME will also lead the efforts in tracking metrics for cloud compliance and coordinate preparedness activities for cloud incident response.
Veterans are encouraged to apply.
Duties
In this role, a typical day will include:
- Maintain and update an inventory of all cloud systems and assets, ensuring each is associated with designated system owners.
- Lead the tracking and reporting of remediation or risk acceptance for all KEV, high, and critical-rated vulnerabilities within the cloud environments.
- Develop and oversee tracking metrics for cloud compliance, focusing on Endpoint Detection and Response (EDR), operating system (OS) logging, tenant administration logging, external connection compliance, and compliance with VA vulnerability remediation policies.
- Coordinate and lead Cloud Incident Response Preparedness (IRP) and Tabletop exercises to identify and address gaps in people, processes, and technologies across different cloud environments (VAEC GovCloud, VAEC Commercial Cloud, VAEC SaaS).
- Work closely with project managers, technical teams, and leadership to ensure comprehensive coverage of security and compliance requirements.
- Serve as one of the go-to experts for all cloud security-related issues and queries, providing guidance and leadership throughout the initiative.
Requirements
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field
- Must have 5 years experience in cloud security
- Relevant certifications such as CISSP, CISM, CCSP, AWS Security, Azure Security, or similar
- Extensive experience in cloud security, including direct experience with large enterprise cloud services such as AWS, Azure, and Microsoft 365
- Proven track record of managing cloud security systems and conducting risk assessments and audits
- Deep understanding of federal IT security regulations and standards, including NIST, CISA, and DISA
- Experience in designing and leading tabletop exercises and security training sessions
- Excellent organizational skills and attention to detail, with the ability to manage multiple tasks simultaneously
- Exceptional written and verbal communication skills
- Exceptional analytical and conceptual thinking skills
- Strong people skills and ability to work collaboratively with a team of peers
Benefits
Maveris attracts and retains talent of the highest caliber by offering opportunities to work in exciting and challenging environments surrounded by bright minds. Our employees are our most prized asset and are rewarded with highly competitive compensation and a top-tier benefits package, including:
- 401(k) with company match
- Dental Insurance
- Health Insurance
- Vision Insurance
- Life Insurance
- Paid Time Off
About Maveris
Maveris offers exceptional, mission-focused, solutions to organizations facing highly complex IT, digital, and cybersecurity challenges. Our success is achieved by maintaining an environment of trust where people are encouraged to reach their fullest potential. Every candidate that applies to Maveris brings something unique to the table, and because our team is diverse, we consistently meet our goals and exceed client expectations. If you are a highly-motivated person with a willingness to learn, we invite you to apply today to join our team!
To learn more about employee benefits visit www.maveris.com.
For company updates and the latest job postings check us out on LinkedIn.
If you'd like to read about some of our research and projects head over to Maveris Labs.
Want a more behind the scenes view? Check out our blog Maveris Insights to learn more about the team behind the solutions.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Azure CCSP CISA CISM CISSP Cloud Compliance Computer Science DISA EDR Incident response NIST Risk assessment SaaS SOC Vulnerabilities
Perks/benefits: 401(k) matching Competitive pay Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs