CISA Auditor focusing on cloud security audits for a Zurich - based international bank. Ensuring cybersecurity and identifying vulnerabilities in IT systems with risk - oriented audits.
About the role
- Cybersecurity Specialist managing compliance for DoD security transition to Zero Trust Architecture. Involves overseeing RMF activities and ensuring ATO deadlines are met in cloud environments.
Responsibilities
- Provide ongoing security support for the legacy SCCA stack and future ZTA Mission Landing Zone (MLZ) stacks in Azure Government across all RMF steps (1–6)
- Perform RMF activities to support CSM Packages, ensuring all requirements are met to achieve and maintain ATO status
- Schedule package checkpoints, deliver status reports, and perform quality assurance reviews
- Maintain and report the system’s Authorization and Assessment (A&A) status and related security events
- Assist in identifying the security control baseline set and any applicable overlays
- Manage Plan of Action and Milestone (POA&M) entries to ensure vulnerabilities are properly tracked, mitigated, and resolved
- Support the implementation and maintenance of the SCCA, including routine patching and ensuring Secure Technical Implementation Guide (STIG) compliance
- Continuously monitor applications by assessing security control quality against requirements defined in the System Level Continuous Monitoring (SLCM) strategy
- Utilize Assured Compliance Assessment Solution (ACAS) results to update system POA&Ms
- Maintain Hardware and Software assessment sheets annually or upon environment changes
- Ensure strict adherence to the DoD SCCA Functional Requirements (v2.9) and the latest DoD Cloud Computing Security Requirements Guide (CC SRG)
- Provide compliance support for RMF packages
- Manage, configure, and sustain future CN/ZTA MLZ security tools in Azure Government and Commercial
Requirements
- Must be a U.S. Citizen
- Bachelor’s degree in Computer Science or a related field
- 2–4 years of cloud engineering experience with specific expertise in RMF activities and ATO deadlines
- Expertise in Azure administration and cloud architecture
- Proficiency with Security Content Automation Protocol (SCAP) scanning tools and Navy eVALUATE
- Experience managing contractual deliverables and project schedules
- Experience with CI/CD and DevSecOps toolchains
- Current Security+ certification
- Active DoD Top Secret clearance or the ability to obtain one.
Benefits
- medical, dental, and vision insurance
- life insurance
- long and short-term disability and other insurance products
- Health Savings Account
- Flexible Spending Account
- 401K Retirement Plan options
- Tuition Reimbursement
- assorted voluntary benefits
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Engineer II responsible for managing enterprise customer support in Security Engineering. Focused on troubleshooting and diagnosing security incidents in a hybrid work environment.
Guest Safety Agent at HRI Hospitality ensuring safety and hospitality for guests and managing outlet spaces. Maintaining a secure environment while engaging with guests and visitors in New Orleans.
Cybersecurity Architect for Saint Louis University developing and assessing security strategies and architecture. Ensuring secure IT services through effective security technologies and practices.
Senior Commercial Manager developing and executing Cyber Security strategies, managing client portfolios and leading complex negotiations in São Paulo.
Security Officer responsible for maintaining safety at WarHorse Casino. Enforcing policies, responding to incidents, and providing customer service to guests.
Manager overseeing global cybersecurity risk management at Warner Bros. Discovery. Driving risk assessments and mitigation activities while collaborating with business stakeholders.
Cyber Security Engineer at MSSP responsible for protecting client assets and information using advanced security measures. Collaborating with teams to analyze threats and recommend mitigations.
Security Engineer developing and delivering security awareness programs and hands - on IAM configurations at CFC. Playing a key role in strengthening the organization's security posture.
Lead strategic capture efforts for National Security Space programs at Blue Origin, working closely with U.S. Government and industry partners. Develop proposals, track programs, and represent the company in national security forums.