Cyber Security Cloud Engineer

SAIC - Charleston, SC

posted 2 months ago

Full-time - Mid Level
Onsite - Charleston, SC
Professional, Scientific, and Technical Services

About the position

SAIC is seeking a Cyber Security Cloud Engineer for the Cloud One program under the Air Force Lifecycle Management Center Office for Network Integration (AFLCMC/HNI). The Cloud One Common Computing Environment is an existing global, interconnected, virtualized, hybrid, and IT infrastructure hosting mission systems, applications, services, and data that will serve the U.S. Air Force (USAF) and U.S. Army (USA). Cloud One incorporates the capabilities of commercial cloud and Managed Service Providers (MSP) residing in Cloud Service Providers (CSPs). This initiative facilitates the USAF and USA's efforts to migrate applications to a cloud environment, allowing the closure of data centers to support the Data Center Optimization Initiative (DCOI) and enabling increased efficiencies across the entire spectrum of the USAF and USA's IT operations. The candidate for this position will work primarily with impact level 6 (IL6) information and must be located in the vicinity of Hanscom AFB or Gunter AFB. Other locations with access to an IL6 facility could be acceptable. The role involves architecting, planning, configuring, deploying, maintaining, and upgrading COTS/GOTS and custom toolsets to address vulnerabilities and implement security controls. The engineer will apply expert engineering knowledge of enterprise IT and security solutions to design, develop, and implement solutions that align with enterprise architecture security policies and support full spectrum military cyberspace operations. In this position, the engineer will design, test, and implement secure operating systems, networks, and security monitoring, as well as manage IT security systems and applications. Responsibilities also include incident response, digital forensics, loss prevention, and eDiscovery actions. The role encompasses security control design and solution planning at various levels, including system, mission, and enterprise levels, and involves addressing a wide range of security issues such as architectures, firewalls, electronic data traffic, and network access. The engineer will research and evaluate cyber capabilities and new security tools against operational requirements, introducing them to the enterprise in alignment with IT security strategy, and supporting both offensive and defensive capability design.

Responsibilities

  • Architects, plans, configures, deploys, maintains, and upgrades COTS/GOTS and custom toolsets to address vulnerabilities and implement security controls.
  • Designs, tests, and implements secure operating systems, networks, and security monitoring.
  • Manages IT security systems and applications, including incident response, digital forensics, loss prevention, and eDiscovery actions.
  • Researches and evaluates cyber capabilities and new security tools against operational requirements.
  • Develops technical solutions to complex problems requiring ingenuity and creativity.
  • Guides the successful completion of major programs and represents the organization as the prime technical contact on contracts and projects.
  • Assists in assessing the data Impact Level (IL) of migrating applications in accordance with the DoD Cloud Computing Security Requirements Guide (SRG).
  • Provides automated application of DoD-hardened STIG for platforms and application configurations.
  • Works with the government to implement and evolve phased ATO process for the environment using A&A automation.
  • Develops approaches to support strong authentication and multi-factor authentication for data access authorization.
  • Implements and verifies applicable DISA STIG, SRGs, and best practices.
  • Configures and implements Azure cloud-native security tools and services.
  • Provides and implements timely remediation recommendations for audit findings.
  • Supports POA&M reviews and recommendations.
  • Supports Code Review Security Vulnerabilities Remediation.
  • Supports updates to Risk Management Framework Artifacts.
  • Creates a Microsoft Visio based topology diagram template.

Requirements

  • Interim Secret clearance required to start; ability to obtain a Secret clearance (or higher) required to maintain employment.
  • Security+ certification required.
  • CAP, CASP, CISM, or CISSP certification required.
  • Bachelor's degree and five (5) years of experience in an IT related discipline (preferred) or a Master's degree and three (3) years of experience; additional years of experience accepted in lieu of degree.
  • Knowledge of DoD Policies and procedures including DoD 8500.01 and DoD 8510.01.
  • Experience with Risk Management Framework (RMF) and updating of security artifacts.
  • Experience with compliance verification methods including DISA STIG, SRGs, and best practices.
  • Experience with DevSecOps.
  • Knowledge of the DoD suite of security tools including ACAS, STIG Viewer, Endpoint Security, etc.
  • Knowledge of cloud environments provided by Azure.
  • Working knowledge of Microsoft Office Suite including Microsoft Visio.

Nice-to-haves

  • Knowledge of DESMF.
  • (ISC)2 CISSP, CompTIA CASP, or other cybersecurity certification preferred.
  • Experience with Agile, Scrum, SAFe or other modern software development methods/practices.
  • Experience supporting USAF or USA software development projects.
  • Experience supporting software migration efforts.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service