This role supports the U.S. Air Force Cloud One Architecture and Common Shared Services contract and currently has an opening for a Cloud Security Architect. This position will coordinate across multiple areas as the program supports AWS, Azure, Google, and Oracle clouds. This is an exciting opportunity to use your experience to modernize a leading, global-scale multi-cloud environment in support of a critical mission, supporting USAF system resiliency, security, and cost effectiveness.
Requirements
- Design, deploy, configure, operate, and maintain authorizations and accreditation of the C1 Architecture for Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle Cloud Infrastructure in NIPRNet and SIPRNet.
- Serve as Subject Matter Expert (SME) for all IT stakeholders involved with system design, system builds, and Authority to Operate (ATO) efforts on cybersecurity requirements and tooling.
- Experience engineering solutions to support migration of security controls from NIST 800-53 Rev 4 to 800-53 Rev 5.
- Support Continuous Authorization to Operate (cATO) within a DevSecOps or cloud-based environment, including implementation of automated control validation, continuous monitoring integration, and real-time POA&M management.
- Create RMF-required authorization-related documentation and artifacts and support ATO sustainment activities for C1 and DPaaS environments.
- Conduct routine Insider Threat Assessment and document results in the Contractor’s System Security Plan
- Continuously monitor system resources through automated scanning and implement automated reporting feeds to support cybersecurity authorizations.
- Verify patch compliance using the approved technical solutions and conduct remediation activities.
- Provide and execute a plan for enterprise vulnerability and compliance scanning.
- Implementation of security procedures, and verify information system security requirements, including coordinating the execution, review, and disposition of STIG checklists for systems, applications, developed code and other components.
- Participate in regular briefings with the customer on cybersecurity status, including preparing briefing materials
- Work closely with government Cyber & technical teams to support ATO conditions and requirements.
- Prepare detailed technical documentation to support development and operational processes
- Collaborate with team members and provide mentorship to junior staff, fostering a learning environment
- Create reference architectures, design patterns, and technical standards for cloud implementations.
Benefits
- Medical
- Dental
- Vision
- AD&D
- STD
- LTD
- Company paid Life Insurance
- 401k with employer contribution
- Paid Time Off
- Pet Insurance
