We are seeking a highly skilled Cloud Security Engineer to support the modernization of a portfolio of applications. The primary goal is to redesign and secure existing .NET and Python applications within the Azure Cloud environment, ensuring they are scalable, secure, and performant. The Cloud Security Engineer will play a critical role in embedding security throughout the development lifecycle, integrating DevSecOps practices, and enhancing the overall security posture of the Agency.
This position is hybrid (On-Site 2 days a week in Bethesda, MD).
Responsibilities:
·Assess and analyze existing .NET, Python, and R/Studio applications.·Collaborate with stakeholders to gather requirements and establish security objectives.·Develop detailed design documents incorporating NIST SP 800-53 controls.·Ensure secure coding standards and best practices are followed.·Implement security measures within Azure Cloud services including Azure App Services, Azure Functions, and Azure Kubernetes Service (AKS).·Database Modernization and Management:·Design secure, efficient, and scalable database schemas.·Implement robust data management jobs and maintain databases.·Ensure secure integration with NIH data sources.·Develop secure, interactive data visualizations using Tableau, Power BI, and Business Objects.·Ensure data visualizations are compliant with security standards.·Develop and execute comprehensive security test plans.·Implement automated testing solutions and continuous monitoring.·Address security defects promptly.·Ensure new systems are securely integrated with existing Azure services.·Optimize security within Microsoft Power Platform applications.·Leverage AI and machine learning models to enhance security and efficiency.·Conduct thorough security assessments of existing applications.·Develop and implement security policies and procedures.·Embed security at every stage of the application development lifecycle.·Support NIH Security Assessments, develop Plan Of Action and Milestones (POA&M) for security findings.·Integrate security within CI/CD pipelines.·Design and implement access controls and encryption mechanisms.·Ensure compliance with federal regulations including FISMA and NIST standards.·Provide training and support to development teams on secure coding practices.·Participate in Agile methodologies including regular sprint planning, daily stand-ups, and retrospectives.
Qualifications:
·Bachelor’s degree in Computer Science, Information Technology, or a related field.·5+ years of experience in cloud security, particularly within Azure Cloud services.·Strong knowledge of secure coding standards and best practices.·Experience with DevSecOps practices and CI/CD pipelines.·Familiarity with NIST SP 800-53 controls and federal regulations (FISMA, NIST).·Proficiency in .NET, Python, and database management (Azure SQL Database, Cosmos DB).·Experience with data visualization tools (Tableau, Power BI, Business Objects).·Excellent problem-solving skills and attention to detail.·Strong communication and collaboration skills.
Preferred Skills:
·Certifications such as CISSP, CISM, or Azure Security Engineer.·Experience with Microsoft Power Platform (Power Apps, Power Automate).·Knowledge of AI and machine learning models for security applications.·Familiarity with containerization technologies (Docker, Kubernetes).Apply for this job
