- Design security architectures; recommend integration of new architectural features into existing infrastructures; design cybersecurity architectural artifacts; provide architectural analysis of cybersecurity features and relate existing system to future needs and trends; provide engineering recommendations and resolve integration and testing issues.
- Apply a combination of expert engineering knowledge of enterprise IT and security solutions to design, develop or review proposed solutions to ensure they are consistent with enterprise architecture security policies and support full spectrum military cyberspace operations.
- Design and develops new or reviews proposed security control design and solution planning at the system, mission, and enterprise level, security-in-depth/defense-in-depth, and other related IAM/ISSO/ISSE support functions. Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
- Perform assessments of RMF artifacts and identify where those artifacts deviate from RMF control requirements.
- Review and ensure strict program control processes to ensure mitigation of risks and support obtaining assessment and authorization of systems. Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.
- Provide security engineering supporting DoD/Federal cybersecurity policy (i.e., DoDI , NIST SP 800-53, etc.).
- Work with the government to implement and evolve phased ATO process for the environment using A&A automation and maximize the use of inheritance/reciprocity
- Develop approaches support strong authentication and multi-factor authentication to implement data access authorization based on user identity
- Evaluate and provide recommendation methods of verification of the applicable DISA STIG, SRGs, and best practices
- Provide Tier 3 Cyber Security Service Provider (CSSP) support, as well as interface with and meet requirements of the Tier 2 CSSP support providers
- Ability to provide timely remediation recommendations for audit findings
- Ability to support POA&M reviews and recommendations
- Ability to support Code Review Security Vulnerabilities Remediation
- Ability to support the updates to Risk Management Framework Artifacts
- Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience; PhD or JD and four (4) years or more experience. In lieu of a degree additional years of experience will be considered
- Minimum Information Assurance System Architecture and Engineering (IASAE) Level III certified IAW DoD M replaced by DoDD 8140
- Compliant with DoD and USAF training requirements in DoDD , DoD M, and AFMAN
- Knowledge of DoD Policies and procedures including DoD and DoD
- Experience with DoD suite of security tools including Assured Compliance Assessment Solution (ACAS) Experience (Nessus / Tenable Security Center)
- Experience evaluating STIG/SCAP compliance scanning and implementation
- 5+ years of experience as a Cyber Cloud Engineer supporting cloud environments – preferably AWS and Azure
- Experience evaluating and configuring AWS and Azure Security Services
- Experience with Risk Management Framework (RMF) and updating of security artifacts
- Experience with compliance verification methods including DISA STIG, SRGs, and best practices
- Experience with DevSecOps
- Knowledge of the DoD suite of security tools including HBSS, and eMASS
- Knowledge of cloud environments provided by AWS, Azure, OCI or GCP
- Working knowledge of Microsoft Office Suite including Microsoft Visio
- Experience with ORCA Security Suite of tools
- Experience with Okta Employee and Customer Identity Solutions
- Experience with Windows Server Update Services (WSUS)
- Experience with Oracle and Google Cloud Environments
- Knowledge of DoD Enterprise Service Management Framework (DESMF)
- Certified Information Systems Security Professional (CISSP) certification preferred
- Experience with Agile, Scrum, SAFe or other modern software development methods/practices
- Experience supporting Cloud migration effort
- Interim Secret clearance required to start; Ability to obtain a Secret clearance is required to maintain employment.
- US citizenship required Target salary range: $125,001 - $150,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
-
full time sre
Found in: MyJobHelper US C2 - 2 days ago
Saxon Global , AL, United States Full timeTitle: Site Reliability Engineer · Location: Birmingham, AL (hybrid) · FULL TIME · SUMMARY · The Site Reliability Engineer (SRE) is responsible for enhancing system reliability and resilience through automation. This role combines software and systems engineering to maintain ...
-
Engineer - Industrial
Found in: Lensa US 4 C2 - 3 days ago
Warrior Met Coal, Inc. Alabama, United StatesPlease click the cloud beside your email address in the top right corner to see your account profile page. · The Industrial Engineer is a full-time employee that typically supports the day to day functions of the engineering department through various methods of continuous improv ...
-
matchday operator contract
Found in: MyJobHelper US C2 - 1 day ago
AEG , LA, United StatesSportable is a leading sports technology company on a mission to solve the hardest problems in elite sports using cutting edge technology. From bare metal to cloud, Sportable is a multidisciplinary mecca for sports and technology enthusiasts. If you're a data scientist, computer ...
-
senior manager, hr
Found in: MyJobHelper US C2 - 1 day ago
Marriott , AL, United States**Job Number** · **Job Category** Human Resources · **Location** Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States · **Schedule** Full-Time · **Located Remotely?** Y · **Relocation?** N · **Position Type** Management · **JOB SUMMARY** · Are you ...
-
senior data scientist
Found in: MyJobHelper US C2 - 2 days ago
CGI Technologies and Solutions, Inc. , LA, United States**Senior Data Scientist - Healthcare** · **Category:** Analytics and Emerging Digital Technologies · **Main location:** United States, Louisiana, Lafayette · **Position ID:** J · **Employment Type:** Full Time · **Position Description:** · The best version of us starts with You ...
Senior Cyber Security Cloud Engineer - Alabama, United States - SAIC
Description
Description
SAIC Engineering is seeking a highly experienced and energetic Senior Cyber Security Cloud Engineer to join ourSAIC Engineering team supporting the Cloud One program under the Air Force Lifecycle Management Center Office for Network Integration (AFLCMC/HNI). The Cloud One Common Computing Environment is an existing global, interconnected, virtualized, hybrid, and IT infrastructure hosting mission systems, applications, services, and data that will serve the U.S. Air Force (USAF) and U.S. Army (USA). Cloud One incorporates the capabilities of commercial cloud and Managed Service Providers (MSP) residing in Cloud Service Providers (CSPs). Cloud One facilitates the USAF and USA's efforts to migrate applications to a cloud environment. The Senior Cyber Security Cloud Engineer will focus on Architecture, implementation, and management of security in a multi–Cloud Environment. The overarching focus of this position is to support the engineering team as solutions are engineered to support Cloud One enhancement efforts, designing the Security components of these engineering efforts that maintain the security posture mandated by Cloud One's Authority to Operate. In Support of the SAIC Chief Engineer, the Cyber Security Engineer Principle is responsible for responsive and coherent planning, development, and delivery of assessments of systems and requested changes within the Cloud One environments to identify where those systems and changes deviate from acceptable configurations, enclave policy, or local policy and provide appropriate recommended solutions to meet those requirements.This position is 100% remote.
Job Responsibilities:
Problem Complexity: Develops technical solutions to complex problems which require the regular use of ingenuity and creativity.
Impact: Guides the successful completion of major programs. Erroneous decisions or recommendations would typically result in failure to achieve major organizational objectives.
Liaison: Represents SAIC Engineering as the Cyber technical contact on engineering and architecture projects. Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.
Qualifications
Required Qualifications:
Desired Qualifications:
Required Clearance:
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
