Cloud Systems Engineer with Security Clearance

---

Job description

Title: Cloud Systems Engineer Location: Herndon, VA Clearance: Active TS/SCI w/ Polygraph needed to apply Company Overview: Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. Realizing early on that our most prized assets are our employees, we continually focus our attention on improving the overall work/life experience they have supporting the mission. Our Team is pushed every day to use their industry leading knowledge to provide end-to-end solutions to combat our nation's toughest and most secure problems. If you are looking for a place to not only be professionally challenged, but encouraged and supported by a company that cares, don't look any further than Cornerstone Defense. Responsibilities: Candidate manages security assessment, security compliance, change management, and continuous monitoring responsibilities across 5 cloud service providers (Amazon Web Services, Google Cloud, Oracle Cloud, Microsoft Azure, and IBM Cloud). The work requires a healthy mix of technical and policy knowledge. The Sponsor requires support in understanding and implementing standards like ICD 503, NIST Risk Management Framework, and cloud technologies. The candidate needs polished skills in information system security engineering, and security control assessment. REQUIRED SKILLS and demonstrated experience the candidate shall have the following required skills, certifications and demonstrated experience: Demonstrated experience with Kubernetes Demonstrated experience of general knowledge of cloud architecture and design Demonstrated experience facilitating TEMs with cloud service providers to review cloud service architectures Demonstrated experience maintaining assessment and authorization (A&A) packages across multiple services or systems in accordance with FIPS-199, NIST 800-53, and CNSS 1253 requirements Demonstrated experience designing, implementing, assessing or reviewing systems that utilize cloud technology with either Amazon Web Services, Oracle Cloud, Google Cloud, IBM Cloud, or Microsoft Azure cloud architecture Demonstrated experience with continuous monitoring requirements to include scan analysis for critical or high findings with common scan tools such as Rapid 7, Nessus, and Qualys Demonstrated experience with analyzing scans from common scan tools such as Rapid 7, Nessus, and Qualys Demonstrated experience utilizing or reviewing cross domain technology and common architecture designs Demonstrated experience consulting project teams on system architecture and security posture Demonstrated experience creating, monitoring, or closing system or service Plans Actions and Milestone items (POA&Ms) Demonstrated experience utilizing compliance tools to track assessment and authorization activities such as Xacta 360, Risk Vision, RSA Archer Demonstrated experience with the common control provider concept within the NIST Risk Management Framework and Security Control Frameworks Demonstrated experience with security control assessments to include working with SCAs and preparing security packages for SCAs Demonstrated experience conducting information system security engineering activities Demonstrated experience using the Sponsors or IC element A&A process Demonstrated experience creating or reviewing A&A body of evidence documentation in a cloud security environment Demonstrated experience identifying, implementing, or reviewing appropriate information security controls Demonstrated experience working in Xacta 360

<!– job description page –>