Cloud IT Security Specialist (P)

Location: Fairfax, VA
Job Code: 18-103
# of Openings: 1

Description

POSITION DESCRIPTION (Duties and Responsibilities):

Serve as an Information Assurance and Cloud computing SME with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards and guidance as outlined in the NIST Special Publication(s) (SP) 800-53 and 800-37. Participate in new installations and configurations (IIS) supporting Cloud migration projects.  Assist with the migration of the production / staging / test environments to physical or cloud-based alternatives.  Document architectural standards applicable to specific system, cloud infrastructure and augment documentation for Authority To Operate (ATO) for portfolio systems.  Support development of reports that provide approaches to support the effort to migrate a system (services, applications and data) to a cloud-based architecture. Provide support to harden software for systems hosted under Procurement Integrated Enterprise Environment. Deploy most recent STIGs for application technology software as applicable. Coordinate, document, test, validate, and deploy new cloud technology provided by government. Ensure compliance with DISA STIGs, DLA instructions and orders on assigned systems. Work with enterprise architects to ensure the cloud infrastructure architecture is aligned with enterprise architectural standards and strategies. Assist efforts to provide technical assessment report on Perimeter Assessment, Intrusion Detection and help implement prevention solution in coordination with System Integration, hosting provider, and Cyber Security. Coordinate support for innovative cloud-based solutions management; including Operating System and virtualization layer up through the software-defined and cloud management platform stacks. Support efforts to architect and design cloud infrastructure extensions. Coordinate the design and architect of the cloud layer in support of the planned cloud-based services as well as any changes. Performs other duties as assigned and required.

 

KNOWLEDGE AND SKILLS REQUIRED:

  • Demonstrated expertise in Certification and Accreditation (C&A) and application of the NIST Risk Management Framework (RMF) standards and guidance as outlined in the NIST Special Publication(s) (SP) 800-53 and 800-37 (Current versions)

  • Experience in assessing IA Controls and conducting C&A reviews for large, complex Information systems

  • Possess the ability to work independently with substantial cloud computing security knowledge

  • Must have the essential skillsets to identify, manage and resolve cloud computing security risk and implement “best practices” as applied within a cloud environment

  • Must be well versed in FedRAMP assessment methodology of security and privacy controls deployed in cloud information systems to include six (6) domain areas. The six domains include:
    • Architectural Concepts & Design Requirements

    • Cloud Data Security

    • Cloud Platform & Infrastructure Security

    • Cloud Application Security

    • Operations

    • Legal & Compliance

  • Ability to work in team-oriented environment.

  • Interpersonal and communication skills, to navigate and manage customer expectations

     

 

KNOWLEDGE AND SKILLS DESIRED:

 

  • Excellent open and proactive written and oral communication skills

  • Accepts Responsibility – Willing and able to bear important levels of responsibility: making decisions, being accountable.

  • Openness – Communicates honestly, openly, and consistently. Shares information appropriately and involves the customer in solving problems.

  • Positive Attitude – Encourages a positive viewpoint

 

 

Security Clearance Requirement: 

 

  • Must be a US Citizen

  • DoD Secret clearance

  • Eligibility for an IT II Public Trust

 

Education, Certifications and Relevant Experience (Minimum Requirements):

  • Five (5) years of relevant C&A experience; Risk Management Framework (RMF) and NIST C&A experience

  • Cloud Computing Security Certification (i.e., Cloud Computing Security Professional [CCSP] and Certificate of Cloud Security Knowledge [CCSK] or equivalent)

  • Certification meeting DOD 8570.01 IAM level III [CISSP]

  • DOD IA experience

 

Work Location:  Multiple Locations-- can be located within one hour of any of the 8 DLA primary sites including Columbus OH, Dayton OH, Battle Creek MI, Mechanicsburg PA, Fort Belvoir VA, New Cumberland PA or Ogden UT 

Technatomy Corporation is an Equal Opportunity Employer. It is the policy of Technatomy Corporation to afford equal employment opportunity regardless of race, color, religion, national origin, sex, age, marital status, disability or veteran status, or any other status protected by applicable law.

 





Are you a returning applicant?

Previous Applicants:

If you do not remember your password click here.

Back to Search Results

New Search


Powered By Taleo