Vermont Staffing
Information Assurance And Cloud Computing Specialist
Serves as an Information Assurance and Cloud computing SME with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards and guidance as outlined in the NIST Special Publication(s) (SP) 800-53 and 800-37 (Current versions). Primary Duties and Responsibilities Google Cloud Platform (GCP) Service Management Maintain current certification as a Certified Cloud Security Professional Ability to work independently with substantial cloud computing security knowledge Essential skillsets to identify, manage and resolve cloud computing security risk and implement best practices within a cloud environment Other Duties and Responsibilities Investigate computer and information security incidents Define security objectives and system-level performance requirements Research tools, techniques, countermeasures, and trends in computer network vulnerabilities Configure and validate secure systems, test security products/systems to detect computer and information security weaknesses Maintain computer and information security incident, damage and threat assessment programs Responsible for the formal Security Test and Evaluation (ST&E) required by each government accrediting authority Conduct review of each system's audits and monitor corrective actions Design, develop, or recommend integrated system solutions ensuring proprietary/confidential data and systems are protected Establish strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems Review processes and security protocols and make recommendations for increased cyber security protection Minimum Qualifications Bachelor's Degree in Computer Science or a related field Well versed in FedRAMP assessment methodology of security and privacy controls deployed in cloud information systems Five (5) years of relevant C&A experience; Risk Management Framework (RMF) and NIST C&A experience DOD IA experience Experience in assessing IA Controls and conducting C&A reviews for large, complex Information systems Security Clearance Active Secret level clearance Sensitivity Level: IT-I Critical Sensitive Certifications Computing Environment: IAT II or IAT III (Security+ or similar) 01-M Baseline Certification: One of the following Azure or AWS cloud-based certification per DLA Approved CE list AWS Certified Security Specialty AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Professional Microsoft Certified: Azure Administrator Associate Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified Azure Security Engineer Associate Other Job Specific Skills Ability to communicate effectively and clearly present technical approaches and findings Exercises a limited degree of latitude in determining technical objectives of assignments Excellent attention to detail Must be able to balance multiple tasks simultaneously Advanced knowledge of encryption, vulnerability assessment, penetration testing, cyber forensics, intrusion detection, and incident response and remediation Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions.
Serves as an Information Assurance and Cloud computing SME with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards and guidance as outlined in the NIST Special Publication(s) (SP) 800-53 and 800-37 (Current versions). Primary Duties and Responsibilities Google Cloud Platform (GCP) Service Management Maintain current certification as a Certified Cloud Security Professional Ability to work independently with substantial cloud computing security knowledge Essential skillsets to identify, manage and resolve cloud computing security risk and implement best practices within a cloud environment Other Duties and Responsibilities Investigate computer and information security incidents Define security objectives and system-level performance requirements Research tools, techniques, countermeasures, and trends in computer network vulnerabilities Configure and validate secure systems, test security products/systems to detect computer and information security weaknesses Maintain computer and information security incident, damage and threat assessment programs Responsible for the formal Security Test and Evaluation (ST&E) required by each government accrediting authority Conduct review of each system's audits and monitor corrective actions Design, develop, or recommend integrated system solutions ensuring proprietary/confidential data and systems are protected Establish strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems Review processes and security protocols and make recommendations for increased cyber security protection Minimum Qualifications Bachelor's Degree in Computer Science or a related field Well versed in FedRAMP assessment methodology of security and privacy controls deployed in cloud information systems Five (5) years of relevant C&A experience; Risk Management Framework (RMF) and NIST C&A experience DOD IA experience Experience in assessing IA Controls and conducting C&A reviews for large, complex Information systems Security Clearance Active Secret level clearance Sensitivity Level: IT-I Critical Sensitive Certifications Computing Environment: IAT II or IAT III (Security+ or similar) 01-M Baseline Certification: One of the following Azure or AWS cloud-based certification per DLA Approved CE list AWS Certified Security Specialty AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Professional Microsoft Certified: Azure Administrator Associate Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified Azure Security Engineer Associate Other Job Specific Skills Ability to communicate effectively and clearly present technical approaches and findings Exercises a limited degree of latitude in determining technical objectives of assignments Excellent attention to detail Must be able to balance multiple tasks simultaneously Advanced knowledge of encryption, vulnerability assessment, penetration testing, cyber forensics, intrusion detection, and incident response and remediation Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions.