Cloud Security Engineer (remote) with Security Clearance

---

Job description

KITS Job ID Koniag IT Systems, LLC, a Koniag Government Services company, is seeking a Cloud Security Engineer to support KITS and our government customer. This is a Remote Opportunity. This position requires the candidate to be able to obtain a Public Trust. We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more. Koniag Government Services is seeking a highly skilled Cloud Security Engineer to support the US Department of State , through dynamic and fast-paced development and management of Global Public Affairs web assets. This role will provide professional and technical cybersecurity design, implementation and operational services to assist customers to deploy solutions using cloud computing services. The Security Engineer will be responsible for security-aspects of system design, security tool/service analysis and selection, and subsequent implementation. Individuals will configure tools to meet the business, policy and security risk tolerance of customers. Individuals will document how required security controls are met through cloud service / tool implementation to support Assessment and Authorizations. Essential Functions, Responsibilities & Duties may include, but are not limited to: Engineer and design solutions on cloud platforms such as AWS and WordPress VIP. Experience completing Fedramp documentation to include Authorization-To-Operate. Run risk logs and collaborate with the IPSO to coordinate risk in a tool such as Archer. Be the main point of contact for providing responses on Common Vulnerability Reports Collaborate with technology team to document system boundaries and install controls in place Germain to the technology and document with supporting evidence to the IPSO. Manage risk and provide recommendations to meet relevant security regulations, controls and policy. Implement the design by installing, configuring and testing cloud services and associated 3rd party services and software. Determine how to leverage services from cloud providers and identify gaps that must be met through other tools, software, or 3rd party services. Prepare Assessment and Authorization documents Participate in assessment of system security controls to validate control implementation and identify weaknesses. Perform continuous monitoring using the solutions and tools. Perform security impact assessment of proposed changes to the environment to identify adverse changes in security risk posture or compliance. Identifying new and innovative ways to use existing tool sets to automate security management, monitoring and related processes to reduce risk and costs. Qualifications: BS in computer science, information systems, cybersecurity, or related IT or security field 5 years of professional experience in IT/network engineering, Cloud, security engineering, system administration or security operations. 7 years' experience in a security related role with experience with FISMA, FedRAMP, and NIST SP 800-53 Ability to clearly communicate your contributions in activities such as adding controls into an application framework, working with technical leads, responding to security findings, submitting responses to Common Vulnerability Reports, performing Security Impact Assessments and supporting a Fedramp Authorization-To-Operate. Strong analytical skills with solid verbal and written communication skills Shows initiative, presents ideas to overcome challenges, self-starter. Ability to obtain a Public Trust. Desired Skills: Experience and Certifications: AWS, CISSP, CISM, CISA, CEH, CCSK, CCSP or related security certifications are nice to have Experience with Amazon Web Services, Experience deploying and operating tools such as: Vulnerability Management, Incident Detection, Event/Audit collection and analysis, network and web application firewalls. Experience with LEMP & LAMP stacks (Linux, Nginx, Apache, MySQL, PHP), Drupal development and customization, Drupal module development, MySQL performance and scaling, Javascript (especially frontend), React, experience with various Drupal modules, Elastic press, Elasticsearch and the ELK stack, Akamai, Git, Bitbucket. Some ASP.net experience may be helpful to support the outgoing site for a short period of time Required Clearance: Secret or higher. Relevant bachelor's degree or similar experience Expert knowledge of usability and Section 508 compliance on user experience Experience with Certification and Accreditation (C&A) of Federal Government systems for FISMA compliance with NIST 800-37. Security Test and Evaluation (ST&E) of Federal Government systems. Federal IT Security Professional (FITSP) Certification or equivalent. Knowledge of Federal Information Security Management Act (FISMA), OMB Circular A-130, and the Department of Commerce's National Institute of Standards and Technology (NIST); Work Experience, Knowledge, Skills & Abilities: Ability to support responses to security actions such as denial-of-service attacks via CDN rate limiting Must be able to review findings from security scans, manage remediation activities and actively report on risk. Have strong oral and written communication skills. Ability to work in both team and remote environments working collaboratively with client and team personnel. Strong relationship building and facilitation skills to communicate with stakeholders on all levels of the organization regarding product progress. Ability to work with an IPSO and support entry into an Integrated Risk Management tool such as Archer Mature the application security framework evidenced by continuing Authorization-To-Operate. Working Environment & Conditions This job operates in a professional office environment and has a noise level of mostly low to moderate. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. This position is primarily indoors, consistent with a standard office position and has a noise level of mostly low to moderate. The incumbent is required to stand, walk; sit; use hands to finger, handle, or feel objects, tools, or controls; reach with hands and arms; talk and hear. The workload may require the incumbent to sit for extended periods of time. The incumbent must be able to read, do simple math calculations and withstand moderate amounts of stress. The incumbent must occasionally lift and/or move up to 25 lbs. Specific vision abilities required by the job include close vision, distance vision, color vision, depth perception, and the ability to adjust focus. Our Equal Employment Opportunity Policy The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, sex, sexual orientation, gender, or gender identity (except where gender is a bona fide occupational qualification), national origin, age, disability, military/veteran status, marital status, genetic information, or any other factor protected by law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits and all other privileges, terms, and conditions of employment. The company is dedicated to seeking all qualified applicants. If you require accommodation to navigate or to apply for a position on our website, please contact Heaven Wood via e-mail at or by calling to request accommodation. Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit . Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352

<!– job description page –>