Talent Orchard, LLC has been contracted by a top defense firm in their search for a Cloud Security, Information Systems Engineer

Responsibilities:

Cloud Security, Information Systems Engineer to be based in Alexandria, VA or Chantilly, VA. 
Must be US Citizen and hold a current/active Top Secret Clearance, SCI Eligible.
Additionally, AWS Security, CCSP or other cloud security preferred

JOB DESCRIPTION

Our client has a need for an Information Systems Security Engineer in Arlington, VA or Chantilly, VA. Our team works with some of the nation’s largest cybersecurity programs to develop and deploy network protection and analysis environments. We provide Security Assessment and Authorization (A&A) and Continuous Monitoring (CM) support and help our clients build and migrate to cloud solutions.

KNOWLEDGE AND SKILLS:

• The Cloud Information Systems Security Engineer (ISSE):
• Serves as the Information Assurance Section cloud subject matter expert for the A&A and Continuous Monitoring processes
• Works with Government and development partners to architect, standardize and secure cloud environments to ensure efficient and robust security
• Provides security requirements for cloud architectures and reviews or proposes secure designs
• Explains cloud security controls/requirements and guidance to the System Owners and System Teams and recommending implementation strategies
• Supports the building and A&A of continuous integration/continuous deployment pipelines.
• Participates in and reviews cloud security testing to identify weaknesses, technical flaws, and vulnerabilities
• Investigates new cloud platforms and services
• Supports cloud infrastructure governance, policy and management
• Contributes to Perspecta strategic offerings and solutions
• Identifies cloud architecture development best practices and participates in the Perspecta Communities of Practice for Cloud technology

QUALIFICATIONS / REQUIREMENTS

• Ten (10) years IA and InfoSec experience; which includes developing and reviewing security concepts of operations, systems security plans, security control assessments, contingency plans, configuration management plans, incident response plans, plans of actions and milestones, risk management plans, vulnerability scans, and/or vulnerability management plans
• Five years security engineering experience; which includes systems engineering principles, requirements analysis, system development (software and hardware); network security architecture concepts (topology, protocols, components); and/or IT security principles and methods (firewalls, demilitarized zones, encryption)
• Two years cloud experience; which includes cloud security design, requirements analysis, control implementation, mitigation, and FedRAMP, GovCloud as well as experience with common service providers, such as AWS or Azure
• Experience with FISMA and RMF/A&A processes
• Experience with NIST SP 800 series, FIPS (199, 200) and STIG and SCAP
• Understanding of the Systems Engineering Lifecycle
• Understanding of network access, identity and access management, and network security
• Strong analytical, communication, problem solving and leadership skills

EDUCATION / CERTIFICATIONS REQUIRED:

• AWS Security, CCSP or other cloud security certifications
• CISSP, CISM or GSLC
• Active Top Secret clearance, SCI eligibility

@talentorchard #cjpost