Information Security Cloud Engineer

Information Security Cloud Engineer

Location

Greenbelt, MD

Position Type

Contract

Required Experience

• Amazon Web Services (AWS) platform capabilities and best practices architectures, and engineering solutions within multiple Cloud Service Experience working in AWS via the CLI and management console.
• Knowledge and experience architecting and configuring Virtual Private Clouds (VPCs)
• Experience and significant familiarity with Windows servers: Design, Configuration, and Administration of Windows 2008r2 and 2012.
• Knowledge of Active Directory, including Group Policies.
• Must have solid hands-on experience in Administering Microsoft Active Directory, Domain Controllers, and other like capabilities.
• Sets up administrator and service accounts and troubleshoot creates/updates and Maintains system documentation, interacts with users and evaluates vendor products, deep understanding of monitoring Windows Server and Services
• Strong knowledge of VMWare and Amazon Machine Images (AMI)
• Knowledge of system management tools
• Security frameworks including NIST SP 800-53, FISMA, FedRamp, HITRUST, or NIST CSF
• System administration and engineering experience
• Experience with SIEM, DLP, IDS, Forensics, Detection, Boundary Defense tools
• High level scripting skills: Bash/Python/Ruby
• Expert knowledge of network routing and switching fundamentals to include knowledge of Multiprotocol Layer Switching (MPLS)
• Acquisition, design, deployment, installation, maintenance, and usage of the Government Enterprise networks.
• Operations for firewalls, routers and switches and the ability to formulate access control lists (ACLs) via the Command Line Interface (CLI)
• Enterprise level security hardening for Windows, Linux, and SQL, Oracle, and RDS database solutions in accordance with Center for Internet Security (CIS) and Security Technical Implementation Technical Guides (STIGs)
• Continuity of operations (COOP) concepts and implementation for network related hardware failures including isolated and major outages.
• Monitors and controls the performance and status of the network resources.
• Development and implementation of vulnerability remediation strategies.
• Configuration and execution of vulnerability and web application scans.
• Customization compliance scans to meet agency established baselines.
• Experience with automating server configuration for security including logging, key changes, and system hardening.

Required Skills

• Deep technical understanding of operating systems, Cloud architecture and design, Active Directory (AD) application log consumables, systems design as well as superior knowledge of technical operations process and procedures
• Knowledge of encryption, key management and cryptology
• Understanding of the Amazon Web Services (AWS) Well Architected Framework
• Familiarity with the Risk Management Framework (NIST 800-37), Security Controls as described in NIST 800-35, and the Federal Information Security Modernization Act (FISMA) operating standards and applicable guidelines
• Familiarity with performing threat modelling, risk analysis, root cause analysis, risk identification, and risk mitigation
• Experience planning and implementing secure networking practices such as: application segmentation, network segmentation, NAC and other access control testing/validation, updating access control SOPs
• Familiarity with a variety of web application protocols, web services (components including JavaScript, XML, JSON), scripting capabilities (Powershell, Python) software development frameworks, operating systems, and networking technologies.
• Understanding of various web application frameworks such as ASP.NET, J2EE
• Organizational Skills: Proven ability to plan and prioritize work, both their own and that of project team.
• Follows tasks to their logical conclusion.
• Understanding of project management principles and techniques (project plans, critical path, etc), ability to develop security project plans and work with development teams to integrate those into development schedules - in both waterfall and agile environments.
• Team Work: Excels both autonomously and as part of a team.
• Prepared to challenge ideas within a group in a constructive way.
• Ability to influence others and move a team toward a common vision or goal.
• Leadership: Acute business acumen and understanding of organizational issues and challenges.
• Able to work effectively at all levels in an organization.
• Communications: Ability to interact with senior managers, junior staff, and business unit (non-technical) customers clearly and efficiently, both verbally and in writing.
• Able to present ideas in a variety of ways depending upon audience and context.
• Excellent active listening skills.
• Problem Solving: Natural inclination for planning strategy and tactics.
• Ability to analyze problems and determine root cause, generating alternatives, evaluating and selecting alternatives and implementing solutions.
• Results oriented: Able to drive things forward regardless of personal interest in the task.