Cloud Cyber Engineer
Sterling, Colorado, United States of America
Full Time
6 days ago
$63,300 - $129,700 USD
No Visa Sponsorship
Key skills
CloudFirewallsLinuxTypeScriptCRisk ManagementFirewall
About this role
Role Overview
- Reviewing Audit logs and creating mitigation and corrective action plans.
- Using forensic tools for attack reconstructions, determine how to correct vulnerabilities.
- Working with development teams to create, maintain, and monitor data connections, NPE security certificates, firewall connection requests.
- Applying cloud, network, and security best practices to ensure that all requests meet the application goals while minimizing security risk.
- Continually implement and improve DevSecOps process maintained in Linux/Cloud based development environment.
- Applying best practices and processes to capture, refine, and assist in the prioritization of requirements based on risk, engineering principles, and mission requirements.
- Architect security infrastructure as needed to protect against cyber attacks.
- Providing enhanced security architectures, development tools, and information systems to facilitate secure missions.
- Information System Owners (ISOs) guidance, requirements understanding, and options to support technical security engineering.
- Capability based security analysis of system security architectures, identifies vulnerabilities, and provides suggested mitigation alternatives.
- Participates in design, development, and implementation of information systems to ensure these systems are in compliance with required security features and safeguards.
- Security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
- Evaluates scan results and works with system developers and system administrators to eliminate or mitigate findings.
- Generates certification and accreditation (C&A) documentation and artifacts (ie. System Security Plans, Network Interface Planning Documents, etc.) for import / upload to the SNOW tool.
- Proposes categorization of information systems based on types of information processed, in conjunction with DAO Representatives and ISOs.
- Coordinates with appropriate Security Control Assessors (SCAs) early in engineering design phase for ongoing coordination, understating in development and application of security controls, and security tradeoffs and other decisions.
Requirements
- An active TS/SCI clearance with Poly
- Bachelor's degree in information systems, systems engineering, electrical engineering, information technology, or related field
- 3+ years of relevant experience (or 5 + years without related degree)
- Understanding of engineering in development and operational environment
- Understanding of IA principle and organizational requirements
- Experience with DOD/IC System Security control requirements
- Understanding of information security systems engineering principles and IT security technologies (e.g. firewalls, encryption, proxies)
Tech Stack
- Cloud
- Firewalls
- Linux
- TypeScript
Benefits
- healthcare
- wellness
- financial
- retirement
- family support
- continuing education
- time off benefits