Senior Cloud Cyber Security Engineer
Arlington, Virginia
Remote Local
Full Time
$110k - $170k
Senior Cloud Cyber Security Engineer
The Cloud Cybersecurity Technical Specialist is responsible for securing Azure cloud applications by managing vulnerability scanning and patching, supporting cybersecurity strategy and policy development, conducting cyber audits, overseeing configuration management, facilitating Risk Management Framework (RMF) authorization, and implementing DevSecOps practices. This role works closely with the ISSM-O to create and maintain policies, procedures, diagrams, hardware/software inventories, and other essential documentation required for achieving and sustaining Authorization to Operate (ATO) status.
The company is located in Aberdeen, MD and will require onsite as needed.
What You Will Be Doing:
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.
The Cloud Cybersecurity Technical Specialist is responsible for securing Azure cloud applications by managing vulnerability scanning and patching, supporting cybersecurity strategy and policy development, conducting cyber audits, overseeing configuration management, facilitating Risk Management Framework (RMF) authorization, and implementing DevSecOps practices. This role works closely with the ISSM-O to create and maintain policies, procedures, diagrams, hardware/software inventories, and other essential documentation required for achieving and sustaining Authorization to Operate (ATO) status.
The company is located in Aberdeen, MD and will require onsite as needed.
What You Will Be Doing:
- Vulnerability scanning and patch management
- Cybersecurity planning and policy management
- Cyber auditing and compliance
- Configuration management
- Risk Management Framework (RMF) authorization support
- DevSecOps integration
- Incident response
- STIG compliance
- Configuration management for cybersecurity assets
- Host-Based and Endpoint Security Solutions
- Network access control
- Development and maintenance of POA&Ms (Plans of Action and Milestones)
- Bachelor’s degree in Computer Science, Software Engineering, Information Systems, Cybersecurity, or a related field with 3+ years of relevant experience, OR a non-related degree with technical certifications and 5+ years of experience.
- Proficiency with cybersecurity and IT tools such as ACAS, HBSS/ESS, eMASS
- Familiarity with DISA Security Technical Implementation Guides (STIGs)
- Knowledge of NIST 800 series, including the RMF process
- Experience in assessing IT security controls and devices, especially for cloud-based applications and Azure environments
- Experience in IT audits, compliance, enterprise risk management, policy development, security scanning, technical guidance, and system hardening
- Subject Matter Expertise in technical risk assessment, system configuration impacts on security, and applying cybersecurity measures at the enclave level
- Advanced experience with cybersecurity controls and countermeasures in cloud environments, particularly Microsoft Azure
- Microsoft Certified Azure Administrator Associate (AZ104) or higher
- CASP+ CE, CISA, or CISSP (or another DOD 8570 IAT III certification)
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.