Cloud Security Engineer

Cloud Security Engineer

LOCATION: Washington D.C., Maryland, and Virginia (DMV)

CLEARANCE LEVEL:  Secret to TS to TS/SCI

Who We Are:

• A 2023 “Top Work Places” recipient (https://topworkplaces.com/company/plus3-it-systems/)
• A company committed to your training, technical experience growth, and well being
• We provide annual Professional Development Funds for full-time employees.
• These funds cover various certifications, professional memberships, and more.
• As an AWS Partner and proponent of our team, we will reimburse your AWS Certifications.
• Uniquely positioned and ready to expand, with your help, into more complex and technically challenging environments
• Built upon subject matter expertise supporting the Federal Government with a focus on Cloud Adoption, Cloud Security, Cloud Enabled Data Analytics, Cloud Native Application Development, and DevSecOps
• A small business with big partners such as Amazon Web Services, Microsoft (Azure), and Google (Cloud Platform) and other technology partners;
• Immuta
• Databricks
• GitLab
• RedHat
• Multiple Prime contract holder (GSA, SITE III, JAIC DRAID, and NDE)
• Always a committed partner with our customers and laser-focused on their mission

RESPONSIBILITIES:

• Coordinate with other experienced security engineers, architects, software developers, and mission customers to identify the right mix of tools and techniques to translate your customer’s needs and future goals into a plan that will enable secure and effective solutions
• Execute vulnerability assessment scans against client supported operating systems 
• Research new techniques, break free from the legacy model, and implement industry best practices for the client space
• Execute virus definition updates and network monitoring requirements
• Design solutions that ensure maximum flexibility and scalability, while meeting all required security controls
• Conduct advance analysis and recommend remediation steps for cyber security events and incidents
• Support the system security oversight helping to manage the body of evidence in support of the Risk Management Framework requirements
• Develop a critical approach to security design within a cloud environment, providing alternatives and customizing solutions to maintain a balance of security and operational needs to migrate an on-prem technology stack to the cloud

EDUCATION AND EXPERIENCE: 

Specific degree/education and years of experience are dependent on unique contract requirements

• 4-20 years of Information Technology related experience (less than 4 years would be considered for a Junior role)
• Computer Science, Cyber Security, or a related technical discipline degree
• Current technical certification in at least 1 discipline (Required)
  • AWS Certified Solutions Architect - Associate Certification
  • DoD 8570 IAT III Certification
  • DoD 8570 IASAE III Certification
    • Intelligence Community, Department of Defense, or civilian Federal Government Agencies experience
    • Knowledge of cloud architecture and virtualization
    • Possession of excellent interpersonal and presentation skills

Desired Experience:

• 4 to 10 Years of experience with cloud services (Amazon Web Services, Microsoft Azure, Google Cloud Platform, etc.)
• 4 to 6 Years of experience with attaining a Cloud Access Point (CAP), supporting a cloud Authority to Operate (ATO), and developing a cloud migration strategy
• 4 to 10 Years of experience with Nessus ACAS vulnerability scanning services
• 4 to 8 Years of experience with AWS GovCloud, including IL-5 environment, Commercial Cloud Services (C2S), Prisma Cloud, including Twistlock, and containerization
• 4 to 6 Years of experience with developing Risk Management products and working through system authorization through the RMF 
• 4 to 6 Years of experience with RHEL, eMASS, and Xacta
• 4 to 6 Years of experience using implementing Security best practices
• 4 to 8 Years of experience/knowledge of cloud architecture and virtualization
• Possession of excellent interpersonal and presentation skills

Other:

Plus3 IT Systems is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.  We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, contact hr@plus3it.com [include name and/or department, telephone, and e-mail address].

The health and safety of our employees and their families is a top priority. With the continuing impacts of COVID-19 around the world, we are taking action to protect the health and well-being of our colleagues and maintain the safety of the communities where we operate. As a federal contractor, we are required to stay in compliance with Executive Order 14042 with the most up to date information provided at the following link (https://www.saferfederalworkforce.gov/contractors/).

Pay Transparency Notice: Executive Order 11246 requires government contractors to notify applicants and employees of their rights, subject to certain limitations, to discuss, disclose or inquire about compensation or compensation information. Plus3 IT Systems will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge; (b) in furtherance of an investigation, proceeding, hearing or action, including an investigation conducted by the employer; or (c) consistent with Plus3 IT Systems' legal duty to furnish information.