Cloud Cyber Security Engineer, Senior

We are seeking an experienced Cloud Cyber Security Engineer to join our team delivering state-of-the-art, multi-cloud, multi-region services to a government agency.  Qualified candidates will typically be at the cross section of where curiosity and creativity meet to answer the government’s cloud security needs of the future.   

Technical members of our solutions teams require little guidance, but love to learn, collaborate, and problem solve. This position requires the subject matter expertise and passion for supporting the building of secure cloud solutions, and a strong desire to solve our customers’ unique technical and data challenges.    

Primary Responsibilities:  

• Bridging the gap between complex business problems and secure solutions  
• Ensuring that solutions adhere to customer security guidelines, requirements, and industry best practices  
• Maintaining security posture of customer compute and cloud environments  
• Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments 
• Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps 
• Develops and completes system security plans and contingency plans 
• Recommends system enhancements to improve security deficiencies  Conducts security program audits and develops solutions to lessen identified risks 
• Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements 
• Support multiple projects at various stages of the process at the same time. 

Basic Qualifications:  

• Clearance: TOP SECRET WITH POLYGRAPH   
• 6+ years’ relevant experience and a high school degree or 5+ years and a BS degree maintaining security posture of cloud compute environments, preferably AWS or Azure
• Experience managing the full lifecycle of, and workflows for, security accreditation projects under the ICD503 Rev. 4 framework 
• Experience with XACTA 360
• Extensive knowledge of information system security system plans (SSP) and other security relevant documentation for computer systems and applications 
• Knowledgeable in cybersecurity best practices and security risk assessment technologies 
• Experience routinely using knowledge management and code repositories, including but not limited to, GitHub, Gitlab, Jira, and Confluence  

Preferred Qualifications:  

• Demonstrated ability to effectively engage with Sponsor Information System Security Managers (ISSMs) to ensure security compliance of systems  
• Experience obtaining IC reciprocity for at least one security accreditation project  
• Experience supporting the Intelligence Community (IC) 
• Familiarity with the Sponsor’s enterprise operation systems 

Clearance: TOP SECRET WITH POLYGRAPH  

Location: Reston, Virginia  

Physical Requirements  

• Prolonged periods sitting at a desk and working on a computer  
• Must be able to lift 10-15 pounds at times  

 #CJ