Provide cloud cybersecurity guidance and direction in the design, development and implementation of automated solutions, based on a set of standards and processes that enable CI/CD developers to easily apply cybersecurity and compliance services.
Responsible for support of and coordinating with other Engineers, Architects, and teams in implementing a comprehensive cloud and application security program in a DevOps environment.
Manage cloud infrastructure cybersecurity standards and procedures in accordance with audit and compliance teams.
Member of the cloud Joint Validation Team; review and analyze cloud service provider artifact for completeness, consistency, compliance, and due diligence
Interface with application and infrastructure engineers to ensure cybersecurity best practices are embedded in enterprise cloud environment.
Develop cybersecurity strategic plans and roadmaps.
Leverage DevOps tools to build, harden, maintain and instrument a comprehensive cloud-based cybersecurity orchestration platform to be used in product CI/CD pipelines.
Validate cloud infrastructure projects align with cybersecurity and compliance best practices.
Participate in cloud infrastructure design reviews.
Lead cloud cybersecurity technology reviews
Perform risk and vulnerability assessments of cloud IT and IS for accreditation; prepare risk assessment reports for submission to SCA and AO in accordance with DoD, USCYBERCOM, USSOCOM policies, procedures, and regulations.
Coordinate, manage and facilitate cloud cybersecurity compliance processes with internal and external stakeholders to provide timely deliverables and rapid remediation.
Identify, assess, and advise on cloud related cybersecurity compliance risks and controls.
Provide cloud cybersecurity expertise at technical exchange meetings, reviews and briefings to leadership, customers, and contractor personnel.
Identify, create and measure process and control improvement.
Complete annual or periodic cybersecurity assessments of the cloud environment.
Able to work on multiple projects and prioritize accordingly
Requirements
Familiar with cybersecurity architecture design principles.
Broad hands-on knowledge of firewalls, intrusion detection systems (IDS), data encryption and other standard cybersecurity techniques and practices.
Strong experience in cybersecurity and information security and how it relates to all aspects of software/systems design and infrastructure.
Hands on experience implementing cybersecurity solutions with a focus in Infrastructure as a Service (IaaS)/ Platform as a Service (PaaS) in an enterprise environment. Experience with AWS, Microsoft Azure and Google Cloud Platforms is considered a plus.
Strong experience in cloud and application security domains.
Familiarization with Federal Information Processing Standards (FIPS)-199, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, and DoD Cloud Security Requirements Guide
Through IT cybersecurity experience preferably in the area of cloud implementation or maintenance.
Experience OR deep knowledge of using containerization technology, including Open Container Initiative (OCI) compliant containers and OpenShift Container Platform (OCP)
Strong experience designing, developing and deploying cybersecurity tools and technologies for cloud architectures.
Experience with container cybersecurity solutions such as Twistlock and source code scanning solutions such as Fortify.
Proficient in a Linux or UNIX based environment; experience in Red Hat Enterprise Linux (RHEL) is considered a plus.
Extensive experience in implementing and enforcing application security and vulnerability management.
Experience in DevOps and software engineering processes and procedures.
Working knowledge of NIST Cybersecurity Framework and Cloud Security Alliance framework.