(ISDEP 4CV) Cloud Security Engineer

PCI - Washington, DC

Full-time
Top Secret
Washington D.C.
Posted 5 hours ago
(ISDEP 4CV) Cloud Security Engineer

Location: Washington, DC

Clearance: Top Secret with
SCI eligibility

# of vacancies: 1

PCI is seeking a Cloud Security
Engineer to support our Department of Homeland Security operations located
at Nebraska Avenue in Washington DC.

RESPONSIBILITIES:
Provide
expert advice and consultancy to DHS clients on risk assessment, incident
triage, threat modeling, and security vulnerability mitigation.
Assess
and implement information security controls and patterns that support risk
assessments and the development of secure architectures.
Work
with development and engineering teams across ISDEP to prioritize security
issues identified during Security Due Diligence and Application Security
Reviews.
Prepare
security artifacts based on approved Authorization Boundary and architectures.
This includes security categorization (FIPS-199) and gathering evidence for
security control implementation for individual applications and data sets
approved by client to migrate to Cloud services.
Work
with Cloud Engineers to develop and update Cloud roadmap with security
requirements that map security controls to future enterprise updates.
Lead
process improvement projects by developing and implementing automation (using
tools and other mechanisms) of DHS security processes with DevSecOps
methodology.

QUALIFICATIONS:
Bachelor
of Science degree in Information Technology, IT Security, Network Systems
Technology or related field or equivalent experience plus five (5) to seven (7)
years of directly related experience or any equivalent combination of
education, experience, training and certifications.
Experience
working in an Agile environment.
Strong
Security control assessor (SCA) and/or ISSO experience with Cloud based (AWS
preferred) systems.
Demonstrated
experience in areas such as system security, network, and/or application
security experience.
Understanding
of best practices in one or more security engineering specialties: secure
development, cryptography, network security, security operations, systems
security, policy, and incident response.
Experience
with interpreting and implementing security compliance standards and guidance
including Governance, Risk, Compliance (GRC) policies and procedures, NIST
800-53 security control framework.
Obtain
AWS Certification for AWS Certified Security – Specialty or AWS Certified
Solutions Architect within 180 days of offer start.
Security+
Certification
Preferred

Qualifications (desired but not required):
Expertise
in current Intelligence Community (IC) or DHS Cloud environments
Experience
operating in an Agile/DevOps environment
CISSP
or CISA

Job Features
Job Category Cybersecurity
Apply Online
Attach Resume*
No file chosen
Browse
PCI is committed to the principles of equal employment opportunity and gives consideration for employment to qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identify, national origin, disability or protected veteran status.
Submit