Position Summary
As a Security SME you will be responsible for Security Assessment & Authorization (SA&A), Continuous Diagnostics and Mitigation (CDM), Vulnerability Management, and always maintaining a secure cloud footprint. You will advise on the adoption, compliance, and adherence to FISMA/FedRAMP controls and Federal security policies to achieve ATOs.
Responsibilities
Deep experience with cloud security, compliance, and accreditationSupport architecting state-of-the-art , automated, fault-tolerant, and scalable AWS environments following AWS best practices in standard and GovCloud regionsSupport migrating infrastructure and system/application workloads to AWS Cloud including - Rehosting (Lift and Shift), Replatforming, Repurchasing, Refactoring/Re-architecting, Retiring, and RetainingSupport institutionalizing DevOps methodology and creation, maintenance, and employment of automated CICD pipelines.
Be a trusted advisor for DevOps programs by providing objective and relent ideas, insights, and guidanceWorks as or closely with the ISSO to respond to Information Security data calls, inquiries, and surveys. Provide proactive communications to team members regarding status, issues, or questionsExperience working in IT operations, system administration, applications development, change, and configuration management including asset tracking, backup technologies, and other maintenance proceduresParticipate, conducts, and presents in security meetings, workgroups, or training events
Qualifications
- Minimum Education:Bachelor's degree in related discipline AND
- Minimum Experience: 3 years with specialization in cloud technologies OR
- Substitution/Alternative to Minimum Education and Experience: Must have at least 12 years of on-the-job experience
- Be able to work remotely but, be able to go on-site as requested and/or occasionally with potentially some form of post-pandemic cadence, on-site in Washington DC
- Must be a US Citizen
- Understanding of IaaS and PaaS cloud services and experience employing them to design solutions to complex problems
- Experience with Cloud Architecture Design, Networking and Security, DevOps and CICD Pipelines, Migration
- Automation experience including CloudFormation and/or Terraform to ensure repeatable, sustainable AWS infrastructure is effectively managed
- Strong analytical, task management, time management, and communication skills necessary for handling SA&A, CDM, and Vulnerability Management initiatives, tasks, and deadlines impacting the customer's environment
- Ability to achieve ATO from scratch or leverage and build upon existing ATO in adherence to FISMA/FedRAMP controls and Federal security policies
- Ability to collaborate proactively with varied stakeholders for developing SA&A package documentation (Ex: Contingency Plans, System Security Plans, Privacy Impact Assessments, POA&Ms, etc.), reviewing, and revising for accuracy and quality
- Monitoring the remediation of critical, high, and medium findings and vulnerabilities
- Ability to research, analyze, correlate and present vulnerability data from a variety of tools including the analysis of multilevel security risks and problems
- Ability to configure, integrate, and implement 3rd party security solutions
- Effective technical writing skills. Experience writing Plans, SOPs, POA&Ms, policies, guidance, change management request, business cases, security incident reports, risk waivers, remediation action plans, and SA&A-required documentation
- Plan, organize, and execute multiple responsibilities to achieve assessment goals and provide technical leadership to move projects to completion
- Ensure deliverables are completed on time and of high-quality
Nice to Have Skills
- Active Clearance or Public Trust (DOJ Preferred)
- CISSP, AWS Associate, Professional, and/or Specialty – Security (Preferred)
- Experience with varied Patch Management Tools, Antivirus, and Security tools
- Container Orchestration and Management (Kubernetes, ECS, Docker)
- Experience in Application Rehosting, Refactoring, and Legacy Modernization
- Experience in 3rd Party Tool Integration
- Experience with Linux environments and Git and branching
- Experience with databases and AWS database services
Location: Remote or hybrid optionSalary Range: $130,000 - $160,000
Travel Requirements
The travel requirements for this position may vary depending on our needs. You should be prepared to travel domestically as necessary. Travel frequency and duration will be communicated in advance, allowing for proper planning and coordination. Typically, travel may include attending conferences, client meetings, training sessions, and other business-related events. The ability to travel is essential for fulfilling the responsibilities of this role and supporting our organization's goals and objectives.
Company Offered Benefits
Full-time employees are eligible to participate in our employee benefit programs:
- Medical, dental, and vision health insurances,
- Short term disability, long term disability and life insurances,
- 401k with Company match
- Paid time off (PTO) (120 hours PTO that accrue over one year)
- Paid time off for major holidays (14 days per year)
- These and any other employee benefit offerings are subject to management's discretion and may change at any time.
PHYSICAL DEMANDS AND WORK ENVIRONMENT
The work is generally performed in an office environment. Physical demands include sitting, keyboarding, verbal communication, written communication. Employees are occasionally required to stand; walk; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl. The physical demands described here are representative of those that must be met by an employee to perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform the functions.This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended anytime at the sole discretion of the Employer.
Duties and responsibilities are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job, the incumbents will possess the skills, aptitudes, and abilities to perform each duty proficiently. This document does not create an employment contract, implied or otherwise, other than an "at will" relationship. Effectual Inc. is an EEO employer and does not discriminate on the basis of any protected classification in its hiring, promoting, or any other job-related opportunity.
