Booz Allen HamiltonRemote
Cloud Security Engineer
United States of America
Full Time
5 hours ago
$99,000 - $225,000 USD
No H1B
Key skills
Cybersecurity ArchitectureAmazon Web Services (AWS)Microsoft AzureRisk Management Framework (RMF)System Security PlansCybersecurity Concept of OperationsAssessmentAuthorization (A&A)DoD Security Technical Implementation Guidance (STIG)DevSecOpsMicrosoft ProductsRed Hat Enterprise Linux (RHEL)Windows System AdministrationCode Management Tools - GitInformation Assurance (IA)Information System Security Engineer (ISSE)Information System Security Officer (ISSO)DoD 85708140 IAT Level II CertificationAWSAmazon Web ServicesAzureGitGitLabAgileProject ManagementRisk ManagementCommunicationCloud Security
About this role
Booz Allen Hamilton is seeking a Cloud Security Engineer to define, communicate, and implement cybersecurity architecture for AWS and Microsoft Azure environments. The role involves collaborating with stakeholders to design and monitor cloud solutions, develop RMF artifacts, and support assessment and authorization activities.
Responsibilities:
- Define, communicate, and implement cybersecurity architecture and administration processes for Amazon Web Services (AWS) and Microsoft Azure cloud environments across multiple network domains
- Collaborate across our cloud infrastructure delivery team and with stakeholders using an Agile process to design, implement, verify, and continuously monitor cloud solutions across multiple domains
- Develop Risk Management Framework (RMF) Body of Evidence artifacts, including system security plans and cybersecurity concept of operations documents for Cloud environments in alignment with existing RMF packages
- Support assessment and authorization activities to achieve and maintain Authority to Operate (ATO) on multiple networks
- Evaluate enhancements to Cloud environments against RMF controls and DoD Security Technical Implementation Guidance (STIG) requirements
- Support data capture and configuration within tools to enable achievement of the organization’s Assessment and Authorization (A&A) objectives
- Work without considerable direction
- Mentor and supervise team members, as needed
Requirements:
- 4+ years of experience securing computer systems, performing DoD authorization activities, developing a body of evidence for RMF, and writing security plans
- 4+ years of experience with secure IT architecture and computing hardware and software
- Experience working with Cloud technologies, including AWS, Azure, or Infrastructure as a Service
- Experience with Microsoft products
- Experience supporting security reviews of software and system releases within a DevSecOps framework and supporting recurring path-to-production software and system release activities
- Experience with terminology, processes, and regulations of IT system A&A for the RMF
- Secret clearance
- HS diploma or GED
- Ability to obtain a DoD 8570 or 8140 IAT Level II Certification within 90 days of hire date
- Experience assessing and authorizing network connections between on-premise and cloud
- Experience planning, implementing, and managing continuous monitoring solutions and working within an Agile-based project management framework
- Experience with Red Hat Enterprise Linux (RHEL) or Windows system administration
- Experience with code management tools such as Git or GitLab in a team setting
- Experience with the Army, DoD, or Intelligence Community (IC) Information Assurance (IA) or Information Systems
- Experience in Information System Security Engineer (ISSE) or Information System Security Officer (ISSO) roles
- Knowledge of terminology and federal regulations related to the specification, development, acquisition, and maintenance of IT systems
- Ability to work independently and as an integrated member of a project team
- Possession of excellent verbal and written communication skills
- TS/SCI clearance