FedRAMP Cloud Cybersecurity Analyst(Primarily Remote)
1 month ago
This is primarily a Telework position with a requirement to be onsite at least one (1) day a week in Hanover MD.
As a FedRAMP Cloud Security Analyst you will play a crucial role in ensuring the security and compliance of the programs under the DCSA Program Executive Office (PEO). You will be responsible for managing the Federal Risk and Authorization Management Program (FedRAMP) support for Amazon Web Services (AWS) based cloud systems.
BASIC QUALIFICATIONS
Candidates should demonstrate a detailed knowledge the following:
- Prior support of FedRAMP activities for cloud hosted systems such as eMASS Package (ex: Readiness Assessment Report (RAR), System Security Plan (SSP), Plan of actions & Milestones (POA&M), etc.)
- Review, Audit, and validate compliance of DCSA systems Secure Cloud Computing Architecture (SCCA) to ensure cloud systems connections to the Boundary CAP (BCAP) and Virtual Datacenter Security Stack (VDSS) are implemented in accordance with the cloud Security Requirements Guide (SRG) including support for the internal implementation of the Visual Data Management System (VDMS) solutions internally.
- Perform periodic cyber security control assessments of IT cloud systems, identify potential risks and gaps, and make recommendations and implement cloud security improvements based on industry standards and best practices.
- Perform Cyber Security Impact Assessments and Risk Assessments for new and existing cloud systems, determine security posture and viability for organizational use, and make recommendations for cloud security architectures and controls.
- Provide support for the internal Information Security Continuous Monitoring Program for authorization to operate and ongoing authorization approvals for cloud-based IT systems.
- Experience working with Third Party Assessment Organizations (3PAO)
- Participation with the DISA Cloud Joint Verification Team (JVT) Team
- Assist the Product Managers (PMs) and/or Program Management Office (PMO) with cyber security audits and assessments of cloud systems including programmatic reviews and management of corrective action plans.
- Participated in reviews of Information System Agreement (ISA) / Memorandum of Agreement (MOA), Whitelisting, etc.
- Worked with the solution engineers to identify best practices and methods required by the FedRAMP PMO to configure and operate within the NIST SP 800 series of controls.
- Assist with non-cloud systems authorization efforts utilizing the Risk Management Framework (RMF).
- Understanding and familiarity with cloud architectures (e.g. SaaS, PaaS, IaaS), common commercial cloud systems (e.g. AWS, Microsoft 365, etc.) as well as specific DOD cloud architecture BCAP, ICAP, SCCA, cloud security solutions (e.g. Cloud Access Security Broker, Multi-factor Authentication, Zero Trust Architecture).
#Broadleaf
YEARS EXPERIENCE:
At least two (2) years relevant Cloud Security experience.
EDUCATION REQUIREMENTS:
Bachelor’s Degree, or equivalent experience in Cybersecurity, and/or Information Systems Management, Information Technology.
CERTIFICAITON(S):
DoDM 8140/DoDM 8570.01-M IAM Level I requirements prior to onboarding e.g., CAP, CND, Cloud+, GSLC, Security+ CE, HCISPP or higher-level certification
Multiple cloud certifications preferred.
CLEARANCE LEVEL:
Active Secret Required and eligibility for TS
WORK ENVIRONMENT AND PHYSICAL DEMANDS:
This is primarily a Telework position with a requirement to be onsite at least one (1) day a week.
If alternate worksite is other than DCSA facilities or corporate office space, must have the reliable ability to communicate over voice (cell phone preferred) and stable, capable internet connection.
Must speak English well enough to communicate complex technical ideas to a diverse customer both verbally and in written form.
ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.-
Hanover, United States ASRC Federal Holding Company Full timeASRC Federal is hiring for multiple positions supporting DCSA in Hanover, MD! Openings: Information Systems Security Engineer II Cybersecurity Engineer(SIEM) Cybersecurity Engineer(ELASTIC) Cybersecurity Engineer(SWIMLANE) FedRAMP Cloud Security Analyst If you would be interested in learning more about any of the opportunities listed above please...
-
Hanover, United States ASRC Federal Full timeASRC Federal is hiring for multiple positions supporting DCSA in Hanover, MD! Openings:Information Systems Security Engineer IICybersecurity Engineer(SIEM)Cybersecurity Engineer(ELASTIC)Cybersecurity Engineer(SWIMLANE)FedRAMP Cloud Security Analyst If you would be interested in learning more about any of the opportunities listed above please apply...
-
Cybersecurity Engineer
3 days ago
Hanover, United States ASRC Federal Holding Company Full timeASRC Federal Broadleaf Division is hiring for a Cybersecurity Engineer (SIEM) to support the DCSA in Hanover, MD. JOB DESCRIPTION: ASRC is hiring a SIEM Engineer to support onsite in Hanover MD. This position has been approved for hybrid support (1 days onsite/4days remote). This is a technical, hands-on role responsible for the successful operation of a...
-
Hanover, United States ASRC Federal Holding Company Full timeASRC Federal is hiring for multiple positions supporting DCSA in Hanover, MD! Openings: Information Systems Security Engineer II Cybersecurity Engineer(Splunk) Cybersecurity Engineer(SIEM) Cybersecurity Engineer(ELASTIC) Cybersecurity Engineer(SWIMLANE) Cyber Defense Analyst/ Incident Responder Cloud Security Analyst If you would be interested in...
-
Hanover, United States ASRC Federal Full timeASRC Federal is hiring for multiple positions supporting DCSA in Hanover, MD! These positions have been approved for a hybrid work schedule(1 day per week on-site) Openings: * Information Systems Security Engineer II * Cybersecurity Engineer(SIEM) * Cybersecurity Engineer(ELASTIC) * Cybersecurity Engineer(SWIMLANE) * FedRAMP Cloud Security Analyst If you...
-
Cybersecurity Engineer
6 days ago
Hanover, United States ASRC Federal Holding Company Full timeJob Description ASRC Federal Broadleaf Division is hiring for a Cybersecurity Engineer (SIEM) to support the DCSA in Hanover, MD. JOB DESCRIPTION:ASRC is hiring a SIEM Engineer to support onsite in Hanover MD. This position has been approved for hybrid support (1 days onsite/4 days remote).This is a technical, hands-on role responsible for the successful...
-
Cybersecurity Engineer
6 days ago
Hanover, United States ASRC Federal Holding Company Full timeJob Description ASRC Federal Broadleaf Division is hiring for a Cybersecurity Engineer (SOAR/SWIMLANE) to support the DCSA in Hanover, MD. JOB DESCRIPTION/DUTIES:ASRC is hiring a SIEM Engineer to support onsite in Hanover MD. This position has been approved for hybrid support (1 days onsite/4 days remote). Manage and implement integration between components,...
-
Cloud Security Analyst-
3 hours ago
Hanover, United States ICS Nett, Inc. Full timeICS Nett, Inc. is hiring a Cloud Security Analyst to support the Fort Meade DCSA - NEW AWARD CLEARANCE LEVEL: Active Secret Required and eligibility for TS required WORK ENVIRONMENT: Hybrid (1 Days Onsite and 3 Days Offsite) 7121 Standard Drive in Hanover, MD ICS Nett, Inc. is hiring for a Cloud Security Analyst to support the DCSA in Hanover, MD (Fort Meade...
-
Cybersecurity Engineer
3 hours ago
Hanover, United States ASRC Federal Full timeASRC Federal Broadleaf Division is hiring for a Cybersecurity Engineer (SIEM) to support the DCSA in Hanover, MD. These positions have been approved for a hybrid work schedule(1 day per week on-site) JOB DESCRIPTION: * This is a technical, hands-on role responsible for the successful operation of a variety of cybersecurity tools, logging framework, and...
-
Hanover, United States ASRC Federal Holding Company Full timeJob Description ASRC Federal Broadleaf Division is hiring for an Information Systems Security Engineer II to support the DCSA in Hanover, MD. JOB DESCRIPTION:As a Information Systems Security Engineer II you will lead efforts to manage the Security Technical Implementation Guide (STIG) progress within the PEO program. You will work closely with program...
-
Cybersecurity Engineer
3 hours ago
Hanover, United States ASRC Federal Full timeASRC Federal Broadleaf Division is hiring for a Cybersecurity Engineer (SOAR/SWIMLANE) to support the DCSA in Hanover, MD. These positions have been approved for a hybrid work schedule(1 day per week on-site) JOB DESCRIPTION /DUTIES : * Manage and implement integration between components, and security tools ( e.g. send/receive data from component Swimlane,...
-
Cybersecurity Network Analyst, Mid-Level
1 month ago
Hanover, United States Independent Software Full timeJob DescriptionJob DescriptionWhat you will be doing!Independent Software is seeking a Mid-Level Cybersecurity Network Analyst experienced with computer network exploitation, construction, and diagnostics of computer networks, network analysis, network threats and risks, incident response, and database research.Key Requirements:Skills to include technical...
-
Cybersecurity Engineer
4 weeks ago
Hanover, United States The Economic Development Alliance for Brazoria Co Full timeLocation: 7121 Standard Dr., Hanover, MD, US 21076 Cybersecurity Engineer (SIEM ELASTIC) ASRC Federal Location: 7121 Standard Dr., Hanover, MD, US 21076 Type: Non-Remote Posted on: March 11, 2024 Apply at Original Source #J-18808-Ljbffr
-
Technical Business Analyst
4 weeks ago
Hanover, United States PeopleShare Full timePeopleShare is seeking a REMOTE Technical Business Analyst for an innovative, industry leading healthcare company! You will play a critical role in the client software development lifecycle, with emphasis on the upfront conception/design of new client programs, client enhancements, and development of new client-driven products.Schedule: Monday – Friday,...
-
Cloud Engineer with Security Clearance
4 weeks ago
Hanover, United States ICS Nett, Inc. Full timeCloud Engineer- Hanover MD ( 1 Day Onsite) for DCSA Location: Hanover, MD This position has been approved for hybrid support (1 days onsite 4 Days Remote). Clearance • Minimum Secret Ability to obtain and maintain Top Security/SCI clearance BASIC QUALIFICATIONS: EXPERIENCE:• AWS networking (VPCs, transit gateways, routing, subnets, security groups, ACLs,...
-
Project Lead, Cloud Services
1 day ago
Hanover, United States Ciena Corporation Full timeCiena is committed to our people-first philosophy. Our teams enjoy a culture focused on prioritizing a personalized and flexible work environment that empowers an individual’s passions, growth, wellbeing and belonging. We’re a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and...
-
Infra Project Manager- Remote
3 days ago
East Hanover, United States Cognizant Full time**About the group**: Cognizant’s Cloud, Infrastructure, and Security Services Practice (CIS), is all about accepting digital transformation by driving core modernization holistically across layers. We help customers transform infrastructure and workplace to meet the constantly evolving needs of the digital era. Our broad approach delivers key results for...
-
Hanover, United States ASRC Federal Full timeASRC Federal Broadleaf Division is hiring for an Information Systems Security Engineer II to support the DCSA in Hanover, MD. This position is approved for a hybrid work schedule(1 day per week on-site) JOB DESCRIPTION: * As a Information Systems Security Engineer II you will lead efforts to manage the Security Technical Implementation Guide (STIG) progress...
-
Cloud Software Engineer 5
3 days ago
Hanover, United States Onyx Point, Inc. Full timeREQUIRED: TO BE CONSIDERED FOR THIS POSITION YOU MUST HAVE AN ACTIVE TS/SCI W/ FULL SCOPE POLYGRAPH SECURITY CLEARANCE (U.S. CITIZENSHIP REQUIRED) Provide cloud software research, development, and engineering services to include requirements analysis, software development, installation, integration, evaluation, enhancement, sustainment, testing, validation,...
-
Hanover, United States By Light Professional IT Services Full timeOverview The Proposal Solution Architect will serve as the technical lead and SME with responsibilities including services, solution architecture and design engineering functions as well as lead RFP (Request For Proposal) technical responses. Candidate will serve as a Solution Architect to be responsible for shaping the client's vision/strategy and the...
