nSenior OCI Cyber Engineer
Nabout Leidos
Lincoln, United States of America
5 days ago
Role details
Contract type
Contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
Senior Compensation
$ 195KJob location
Lincoln, United States of America
Tech stack
Amazon Web Services (AWS)
Azure
Cloud Computing
CompTIA Security+
Information Security Management
NIPRNet
Oracle Applications
Ansible
Zero Trust Network Access
Information Security Management System
SC Clearance
Build Management
Oracle Cloud Infrastructure
Devsecops
Plan of Action and Milestones
Job description
- Design, deploy, configure, operate, and maintain authorizations and accreditation of the C1 Architecture for Oracle Cloud Infrastructure (OCI) in IL2 - 5 NIPRNet.\n
- Serve as Subject Matter Expert (SME) for all IT stakeholders involved with system design, system builds, and Authority to Operate (ATO) efforts on cybersecurity requirements and tooling.\n
- Support the cybersecurity authorizations team developing artifacts required to achieve milestones such as Interim Authority Test (IATT) and Authorization to Operate (ATO).\n
- Engineering solutions to support migration of security controls from NIST 800-53 Rev 4 to 800-53 Rev 5.\n
- Ensure compliance with SCCA, Cloud SRG, and other STIG/SRG requirements.\n
- Support Continuous Authorization to Operate (cATO) within a DevSecOps or cloud-based environment, including implementation of automated control validation, continuous monitoring integration, and real-time POA&M management.\n
- Create RMF-required authorization-related documentation and artifacts and support ATO sustainment activities for C1 environments.\n
- Conduct routine Insider Threat Assessment and document results in the Contractor's System Security Plan.\n
- Continuously monitor system resources through automated scanning and implement automated reporting feeds to support cybersecurity authorizations.\n
- Verify patch compliance using the approved technical solutions and coordinate remediation activities.\n
- Provide and execute a plan for enterprise vulnerability and compliance scanning.\n
- Implementation of security procedures, and verify information system security requirements, including coordinating the execution, review, and disposition of STIG checklists for systems, applications, developed code and other components.\n
- Participate in regular briefings with the customer on cybersecurity status, including preparing briefing materials.\n
- Work closely with government Cyber & technical teams to support ATO conditions and requirements.\n
- Prepare detailed technical documentation to support development and operational processes.\n
- Collaborate with team members and provide mentorship to junior staff, fostering a learning environment.\n
Requirements
- Bachelors and 8+ years of prior relevant experience or Masters with 6+ years of prior relevant experience or equivalent experience, additional years of experience will be accepted in lieu of a degree.\n
- 4+ years of experience with cloud hosted systems and/or OCI Cloud Native Services.\n
- Interim Secret clearance required to start with the ability to obtain Secret clearance which is required to maintain employment.\n
- US citizenship required.\n
- Certifications: CompTIA Security+ or equivalent (IAT-2).\n, * Experience with USAF Cloud One or Platform 1.\n
- Experience with automation/tools like EvalSTIG, STIG Manager, Ansible etc.\n
- Experience with Zero Trust Architecture.\n
- Cloud certifications in AWS, Azure, Google, or Oracle clouds.\n
- Certifications: CISSP or equivalent (IAT-3).\n