Apply📍 United States
🧭 Full-Time
💸 163121.0 - 203901.0 USD per year
🔍 Software Development
- 6-10 years of experience in cloud/platform operations or related roles, with a focus on implementing and maintaining secure and compliant systems in diverse environments.
- Strong proficiency in securing AWS GovCloud and Azure GCC High environments, including applying security controls, conducting vulnerability scans, and ensuring compliance with DoD standards.
- Expertise in container orchestration, specifically Kubernetes, with a focus on implementing security best practices, ensuring container runtime protection, and automating vulnerability scanning.
- Expertise with monitoring and observability platforms, including integrating security monitoring tools and automating anomaly detection workflows.
- Proven experience in incident management and troubleshooting large-scale distributed systems, with a focus on mitigating security incidents and performing root cause analysis for vulnerabilities.
- Strong proficiency in Infrastructure as Code (IaC) tools, such as Terraform, including automating the implementation of security policies and controls within IaC pipelines.
- Subject Matter Expertise in Linux Operating Systems administration, with a focus on hardening techniques, patch automation, compliance enforcement and bash scripting languages (Python, Bash, PowerShell)
- Strong understanding of networking concepts and practical experience with securing technologies like Load Balancers, DNS, SSL, Firewalls, NAT, and NTP, including applying network-level security policies.
- Excellent communication skills to articulate security risks, advocate for secure practices, and collaborate in team environments to address challenges effectively.
- A proactive mindset for skill growth, tackling complex security tasks, and driving the implementation of cutting-edge cybersecurity practices.
- A degree (BA/BS) in Computer Science, Cybersecurity, or a related field, or equivalent practical experience, with a focus on secure systems and automation.
- Secure cloud-based environments by designing and implementing native security solutions using services.
- Drive Continuous RMF practices, automating control implementation and reporting through modern methodologies like Continuous Authorization to Operate.
- Automate provisioning and configuration of IT environments using tools such as Terraform, Ansible, Puppet, and Chef.
- Implement and manage security measures like firewalls, IDS/IPS, vulnerability scanning, encryption, and ICAM solutions.
- Secure containerized and large-scale cloud production systems while responding effectively to security incidents.
- Apply advanced cybersecurity concepts to protect systems, including threats, vulnerabilities, encryption, boundary defense, and risk management.
- Establish and manage identity and access management policies, ensuring least-privilege access and cross-account role adherence.
- Create and maintain engineering artifacts, such as network diagrams, data flow diagrams, installation procedures, and operational manuals.
- Enforce cloud-native security best practices, leveraging frameworks like AWS’s Well-Architected Security Pillar
- Collaborate with cross-functional teams to integrate Zero Trust principles into the broader security posture, aligning with DoD policies such as the Risk Management Framework (RMF)
- Apply and operationalize RMF, FedRAMP, and DISA CC SRG controls, ensuring compliance with DoD Impact Levels.
- Collaborate with cross-functional teams to integrate lean and agile practices into secure development lifecycles.
- Train and mentor security engineers, fostering growth and upskilling of the cybersecurity practice team members.
- Contribute to the continuous improvement of cybersecurity practices, ensuring systems are secure, scalable, and compliant.
- Lead incident response efforts, conducting thorough root cause analyses and implementing post-mortem findings.
- Work in a dynamic, collaborative environment that supports your professional development.
AWSPythonBashCloud ComputingCybersecurityKubernetesAzureCI/CDLinuxDevOpsTerraformNetworkingRisk ManagementAnsibleScripting
Posted 4 months ago
Apply