Senior Cloud Security Specialist
Contract Performance Period : August 6, 2024 - December 31, 2024
Skills, Experience, Qualifications, If you have the right match for this opportunity, then make sure to apply today.
Job Location : Washington, DC, Remote with organization's discretion to request occasional on-site at Washington, DC locations.
Direct Hire : Hourly- Contractual through 12 / 31 / 2024, with possibility for extension until June 2025.
Pay Range : Depending on Experience
Travel Requirements : Remote at Washington, DC locations (unless directed otherwise), with organization's discretion to request occasional on-site support at Washington, DC locations.
Working Remotely : Remote at Washington, DC locations (unless directed otherwise), with organization's discretion to request occasional on-site support at Washington, DC locations.
Project Description :
Seeking Senior Cloud Security Specialist to provide services in support of the continuous monitoring of FedRAMP authorized cloud solutions.
We are looking for an experienced information security specialist to work directly with cross-division subject matter experts (SMEs) and provide insight, advice, support, and recommendations to ensure the success of the continuous monitoring process, with a targeted focus in FedRAMP, FISMA, Privacy Act, and OMB requirements.
The selected individual shall have experience successfully reviewing FedRAMP continuous monitoring packages and advising on secure cloud control implementation.
The successful candidate shall be adept at working collaboratively in a consensus-based environment while serving as an individual contributor who develops information security related work products.
Place of Performance : Remote at Washington, DC locations (unless directed otherwise), with organization's discretion to request occasional on-site support at Washington, DC locations.
Period of Performance : August 6, 2024, to December 31, 2024, with potential for extension to June 2025.
Qualification Requirements :
The candidate shall possess the knowledge and skills set forth for a Cloud Security Specialist, with specific focuses on the below knowledge and experience which can be demonstrated :
- Bachelor’s degree or higher in information security, or a related field or equivalent experience
- At least one advanced cybersecurity certification such as : CISSP, CCSP, CRISC, or other relevant security certifications;
multiple are preferred
- At least seven (7) years of information security experience, including cloud security and continuous monitoring activities
- Extensive NIST experience : NIST SP 800-30 rev 1, 800-37 rev 1 or 2, 800-53 rev 5, 800-60 Vol 1 rev 1 & 2 rev 1, and 800-171 rev 3
- Experience with implementing systems in a FedRAMP, FISMA, and SOX compliant environment
- Proven ability to forge consensus and work collaboratively, without positional authority, to influence stakeholder groups in different hierarchical structures
- Demonstrate strong project execution and project management capabilities
- Experience with FedRAMP reporting requirements, including but not limited to, risk assessments, Plan of Action and Milestones (POA&M), and remediation plans
- U.S. citizenship is a requirement.
Skills Requirements :
Preferred Knowledge Experience and Skills Requirements :
- Experience with government compliance, including OMB requirements, FISMA, FedRAMP, RMF, and CSF
- Experience with cloud environments, architectures, technologies, and services FedRAMP experience and certification
- Advanced knowledge and experience with project management methodology, information security compliance, and implementation of security architectures and related standards
- Knowledge of the laws and regulations governing information security and compliance
- Excellent communication skills (verbal and written), and able to adjust to changing priorities and customer needs
- Strong interpersonal and organizational agility skills. Must be able to deal effectively with all levels of management and staff
- Detail-oriented and committed to excellent customer service
Responsibilities :
The Contractor shall deliver, but not limited to, the following :
- Review current continuous monitoring program and provide recommendations for improvement
- Conduct monthly FedRAMP continuous monitoring package analysis, this includes reviewing deviation requests and POA&Ms as well as documenting a summary for the client.
- Advise clients on FISMA / FedRAMP compliance activities while staying current with the legislation, and National Institute of Standards and Technology (NIST) and Office of Management and Budget (OMB) requirements.
- Conduct security risk assessments for third party applications and service providers.
- Ensure organizational structure recommendations integrate cohesively into the overall Client DFM and strategic direction and are in alignment with other high-priority work across the division.
- Identify and help plan for long-term financial considerations due to cloud migration and business transformation.
- Review and advise on post implementation de-commissioning scheme for legacy applications, as well as migration and maintenance of historic data.
- Review additional process and procedures and make recommendations for improvement to the client.
- Provide ad-hoc support services. The Client requires the specialist to support some unexpected and ad-hoc tasks associated with planning and executing the system implementation.
These services may include but are not limited to advisory consulting services for Client leaders, facilitating strategic meetings or working sessions, and reviewing and opining on the Client’s system documentation.
Job ID : 1404
Submit your resume for this position
indicates required fields
Your Name
First Last
Your Email *
Available Start Date MM slash DD slash YYYY
Your Message
Attach your resume : Accepted file types : pdf, doc, docx, txt, Max. file size : 1 MB. Note : accepted file types are pdf, doc, docx and txt up to 1MB
Consent
I read and accept the website's Privacy Policy
J-18808-Ljbffr