Cloud Security Engineer, Senior

• Provide cloud cybersecurity guidance and direction in the design, development and implementation of automated solutions, based on a set of standards and processes that enable CI/CD developers to easily apply cybersecurity and compliance services.
• Responsible for support of and coordinating with other Engineers, Architects, and teams in implementing a comprehensive cloud and application security program in a DevOps environment.
• Manage cloud infrastructure cybersecurity standards and procedures in accordance with audit and compliance teams.
• Member of the cloud Joint Validation Team; review and analyze cloud service provider artifact for completeness, consistency, compliance, and due diligence
• Interface with application and infrastructure engineers to ensure cybersecurity best practices are embedded in enterprise cloud environment.
• Develop cybersecurity strategic plans and roadmaps.
• Leverage DevOps tools to build, harden, maintain and instrument a comprehensive cloud-based cybersecurity orchestration platform to be used in product CI/CD pipelines.
• Validate cloud infrastructure projects align with cybersecurity and compliance best practices.
• Participate in cloud infrastructure design reviews.
• Lead cloud cybersecurity technology reviews
• Perform risk and vulnerability assessments of cloud IT and IS for accreditation; prepare risk assessment reports for submission to SCA and AO in accordance with DoD, USCYBERCOM, USSOCOM policies, procedures, and regulations.
• Coordinate, manage and facilitate cloud cybersecurity compliance processes with internal and external stakeholders to provide timely deliverables and rapid remediation.
• Identify, assess, and advise on cloud related cybersecurity compliance risks and controls.
• Provide cloud cybersecurity expertise at technical exchange meetings, reviews and briefings to leadership, customers, and contractor personnel.
• Identify, create and measure process and control improvement.
• Complete annual or periodic cybersecurity assessments of the cloud environment.
• Able to work on multiple projects and prioritize accordingly

Requirements

• Familiar with cybersecurity architecture design principles.
• Broad hands-on knowledge of firewalls, intrusion detection systems (IDS), data encryption and other standard cybersecurity techniques and practices.
• Strong experience in cybersecurity and information security and how it relates to all aspects of software/systems design and infrastructure.
• Hands on experience implementing cybersecurity solutions with a focus in Infrastructure as a Service (IaaS)/ Platform as a Service (PaaS) in an enterprise environment. Experience with AWS, Microsoft Azure and Google Cloud Platforms is considered a plus.
• Strong experience in cloud and application security domains.
• Familiarization with Federal Information Processing Standards (FIPS)-199, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, and DoD Cloud Security Requirements Guide
• Through IT cybersecurity experience preferably in the area of cloud implementation or maintenance.
• Experience OR deep knowledge of using containerization technology, including Open Container Initiative (OCI) compliant containers and OpenShift Container Platform (OCP)
• Strong experience designing, developing and deploying cybersecurity tools and technologies for cloud architectures.
• Experience with container cybersecurity solutions such as Twistlock and source code scanning solutions such as Fortify.
• Proficient in a Linux or UNIX based environment; experience in Red Hat Enterprise Linux (RHEL) is considered a plus.
• Extensive experience in implementing and enforcing application security and vulnerability management.
• Experience in DevOps and software engineering processes and procedures.
• Working knowledge of NIST Cybersecurity Framework and Cloud Security Alliance framework.
• Active TS/SCI clearance required
• Bachelor’s Degree
• 8+ year relevant experience
• IASAE Level III