ASM Research, An Accenture Federal Services Company
Cloud Computing Specialist (CCS) SME
ASM Research, An Accenture Federal Services Company, Boston, Massachusetts, us, 02298
Overview
Serves as an Information Assurance and Cloud computing SME with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the NIST RMF standards and guidance as outlined in NIST SP 800-53 and 800-37 (current versions). Primary Duties and Responsibilities
Google Cloud Platform (GCP) Service Management Maintain current certification as a Certified Cloud Security Professional; possesses the ability to work independently with substantial cloud computing security knowledge. Identify, manage and resolve cloud computing security risk and implement best practices as applied within a cloud environment across different deployment and service models. Other Duties and Responsibilities
Investigate computer and information security incidents to determine the extent of compromise to national security information and automated information systems. Define security objectives and system-level performance requirements. Research and stay abreast of tools, techniques, countermeasures, and trends in computer network vulnerabilities. Configure and validate secure systems, test security products/systems to detect weaknesses. Maintain the computer and information security incident, damage and threat assessment programs. Responsible for the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of results and preparation of required reports. Periodic review of each system’s audits and monitor corrective actions until all actions are closed. Design, develop, or recommend integrated system solutions ensuring proprietary/confidential data and systems are protected. Establish strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems. Review processes and security protocols and make recommendations for increased cyber security protection. Minimum Qualifications
Bachelor’s Degree in Computer Science or a related field. CCS with FedRAMP assessment methodology knowledge across six domain areas: Architectural Concepts & Design Requirements; Cloud Data Security; Cloud Platform & Infrastructure Security; Cloud Application Security; Operations; Legal & Compliance. Five (5) years of relevant C&A experience; RMF and NIST C&A experience. DOD IA experience. Experience in assessing IA Controls and conducting C&A reviews for large, complex information systems. Security Clearance
Active Secret level clearance Sensitivity Level: IT-I Critical Sensitive Certifications
Computing Environment: IAT II or IAT III (Security+ or similar) One of the following Azure or AWS cloud-based certifications per DLA Approved CE list AWS Certified Security – Specialty AWS Certified Solutions Architect – Associate; AWS Certified Solutions Architect – Professional Microsoft Certified: Azure Administrator Associate; Microsoft Certified Azure Solutions Architect Expert; Microsoft Certified Azure Security Engineer Associate Other Job Specific Skills
Must be able to communicate effectively and clearly present technical approaches and findings. Exercises a limited degree of latitude in determining technical objectives of assignments. Excellent attention to detail. Must be able to balance multiple tasks simultaneously. Advanced knowledge of encryption, vulnerability assessment, penetration testing, cyber forensics, intrusion detection, and incident response and remediation. Compensation
Compensation ranges for ASM Research positions vary depending on multiple factors; including location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM\'s overall compensation and benefits package for employees. EEO Requirements
ASM is an equal opportunity employer. It does not discriminate on the basis of race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin in any personnel or management decisions. All recruiting, hiring, training, and promoting for all job classifications are done without regard to these factors. Physical Requirements
The physical requirements described are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities to perform the primary functions. Disclaimer
The preceding job description is intended to describe the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
#J-18808-Ljbffr
Serves as an Information Assurance and Cloud computing SME with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the NIST RMF standards and guidance as outlined in NIST SP 800-53 and 800-37 (current versions). Primary Duties and Responsibilities
Google Cloud Platform (GCP) Service Management Maintain current certification as a Certified Cloud Security Professional; possesses the ability to work independently with substantial cloud computing security knowledge. Identify, manage and resolve cloud computing security risk and implement best practices as applied within a cloud environment across different deployment and service models. Other Duties and Responsibilities
Investigate computer and information security incidents to determine the extent of compromise to national security information and automated information systems. Define security objectives and system-level performance requirements. Research and stay abreast of tools, techniques, countermeasures, and trends in computer network vulnerabilities. Configure and validate secure systems, test security products/systems to detect weaknesses. Maintain the computer and information security incident, damage and threat assessment programs. Responsible for the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of results and preparation of required reports. Periodic review of each system’s audits and monitor corrective actions until all actions are closed. Design, develop, or recommend integrated system solutions ensuring proprietary/confidential data and systems are protected. Establish strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems. Review processes and security protocols and make recommendations for increased cyber security protection. Minimum Qualifications
Bachelor’s Degree in Computer Science or a related field. CCS with FedRAMP assessment methodology knowledge across six domain areas: Architectural Concepts & Design Requirements; Cloud Data Security; Cloud Platform & Infrastructure Security; Cloud Application Security; Operations; Legal & Compliance. Five (5) years of relevant C&A experience; RMF and NIST C&A experience. DOD IA experience. Experience in assessing IA Controls and conducting C&A reviews for large, complex information systems. Security Clearance
Active Secret level clearance Sensitivity Level: IT-I Critical Sensitive Certifications
Computing Environment: IAT II or IAT III (Security+ or similar) One of the following Azure or AWS cloud-based certifications per DLA Approved CE list AWS Certified Security – Specialty AWS Certified Solutions Architect – Associate; AWS Certified Solutions Architect – Professional Microsoft Certified: Azure Administrator Associate; Microsoft Certified Azure Solutions Architect Expert; Microsoft Certified Azure Security Engineer Associate Other Job Specific Skills
Must be able to communicate effectively and clearly present technical approaches and findings. Exercises a limited degree of latitude in determining technical objectives of assignments. Excellent attention to detail. Must be able to balance multiple tasks simultaneously. Advanced knowledge of encryption, vulnerability assessment, penetration testing, cyber forensics, intrusion detection, and incident response and remediation. Compensation
Compensation ranges for ASM Research positions vary depending on multiple factors; including location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM\'s overall compensation and benefits package for employees. EEO Requirements
ASM is an equal opportunity employer. It does not discriminate on the basis of race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin in any personnel or management decisions. All recruiting, hiring, training, and promoting for all job classifications are done without regard to these factors. Physical Requirements
The physical requirements described are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities to perform the primary functions. Disclaimer
The preceding job description is intended to describe the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
#J-18808-Ljbffr