AWS Cloud Security Engineer
ECS Corporate Services

Job Info

---

ECS is seeking an AWS Cloud Security Engineer to work in our Washington, DC office.

Job Description:
ECS is looking for knowledge experienced skilled independent working AWS cloud security engineers to support a non-profit customer in the Washington, DC area a develop a secure cloud-based system. We are seeking qualified candidates to provide cloud security architecture expertise and provided guidance in the implementation of system-specific security controls and security overlays necessary to ensure the resilience of system's security posture.

Required Skills:

• High School Required, BS Preferred
• Must be able to obtain a Public Trust Clearance
• Candidates must have 4 or more years of current direct demonstrated cloud security engineering experience, expertise, and in-depth knowledge; specifically, supporting AWS-based FedRAMP systems. Acceptable candidates must possess a strong working knowledge of standards-based integration architectures in cloud environments and possess SME-level cloud security engineering, implementation, and operations and maintenance experience.
• Candidates shall possess proactive desire to drive best practices for implementing, administering and evolving effective information security and privacy program based initiatives at the Enterprise-level and able to integrate quickly into current efforts, produce high-quality written documentation within established timelines, and apply critical analytic thinking across the diverse field of cloud security and privacy.
• Candidates must possess in-depth detail understanding and real-world experience with security frameworks and their implementation and assessment. Must have developed moderate to high accreditation packages. Provided continuous monitoring support, using tools like Splunk and Fortify. Implemented, configured, and maintained microservices. Assessed security posture of microservice-based environments. Provided front-line incident response support. Supported contingency, disaster recover, and continuity of operations. Have real-world experience using AWS console, services and native tools, such as:
• Expertise in technical and business environment, familiarity with cloud security standards, to include:
  • Linux
  • Microservices
  • Maven
  • Lambda
  • Active Directory
  • LDAP
  • CloudWatch
  • CloudTrail
  • Amazon Inspector
  • Grafana
  • GuardDuty
  • Config
  • KMS
  • AWS Macie
  • Container Security
• Experience with business continuity, disaster recovery, auditing, risk management, vulnerability assessments, and cybersecurity and incident management
• Advanced understanding in one or more of the following areas:
  • Platform Security
  • Cloud Computing Security
  • Data Security
  • Network Security
  • Security Assessment
  • Security Incident Response, and
  • Security Compliance Audits
• IAM (Identity and Access Management) concepts and technologies to secure production and corporate access, such as: SSO, SAML
  • Federated Identity, RBAC/ABAC, authentication & authorization solution, etc.
  • Designing, assessing, and implementing security groups
  • NACLs (Network Access Control Lists)
  • Writing IAM policies
• Demonstrated secure-cloud configuration experience, (CloudTrail, AWS Config, etc.), cloud-security technologies (VPC, Security Groups, etc.) and cloud-permission systems (IAM).
• Configuring and administering AWS Shield (managed Distributed Denial of Service (DDoS) protection service)
• Define and implement appropriate policies for AWS security solutions
• Experience with broad array of security technologies, such as NGFW, WAF, SIEM, endpoint security and more.
• Configuring and administering AWS Control Tower, WAF (Web Application Firewalls), KMS (Key Management Service), Secrets Manager, Certificate Manager, etc.
• 4 or more years providing ongoing monitoring to identify threats and monitors the network for any security breaches; configuring scanning tools, performs regular vulnerability scanning and oversees remediation activities; performing maintenance of security documentation; ensuring compliance to all applicable standards and supports the ATO security process; Provides incident response support and remediation; creating incident tickets to cover all activity needed to address an incident and maintain an internal chronology of steps taken to remediate the incident.
• Responsible for monitoring security events to identify threats and discovery responses.
• Reviewing results of system scans to identify remediation actions.
• In the event a threat is identified, taking action to stop or mitigate the threat and develop a plan for remediation to prevent this from occurring in the future.
• Must be proficient with desktop programs such as Adobe Acrobat, MS Excel, MS Word, MS Visio
• Must possess a high attention to detail
• Strong oral and written communication skills
• Strong interpersonal communication skills

Desired Skills:

• BS Preferred
• Provide findings and recommendations in the following areas: NIST Policy, FEDRAMP and Cybersecurity
• Conduct security assessments to identify areas of risk and ensure any gaps are remediated
• Work closely with the DevOps, System support engineer to provide guidance on security weaknesses in the cloud environment
• implementation of encryption, privilege management, logging, input validation, secure storage design and secure data transfer
• Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security
• May participate in simulated attacks or security violations to assess the organization's data security measures
• Developing cogent compliant system security plans and security policies and procedures
• Implementing and designing security countermeasures to ensure systems are capable of responding in the event of a security breach
• Coordinating security rules and internal access authorization with operations leadership and management
• Ensuring system implement tight access controls by enforcing principles of least privilege and separation of duties
• Experience working with AWS/Cloud Architect and customer's security team to ensure they understand existing architecture, accreditation boundary, interconnection, common controls, and develop solutions to improve overall network architectural design and improve system security posture
• Experience implementing, maintaining, and operating security monitoring tools and infrastructure; and designing, implementing, and maintaining security infrastructure, including management of commercial security products
• Defining data protection and governance standards
• Experience in using JIRA, Qualys, Splunk for Enterprise audit, Active Directory, LDAP
• Experience and KSAs with the following regulations, standards, and best practices, such as:
  • Federal Risk and Authorization Management Program (FedRAMP)
  • System and Organization Controls (SOC) 2
  • Federal Information Security Management Act (FISMA)
  • Federal Information Processing Standard (FIPS) 140-2, 199, and 200
  • Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS)
  • National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 Security and Privacy Controls for Federal Information Systems and Organizations
  • NIST Cyber Security Framework (CSF)
  • 800-171 Protecting CUI in Non-Federal Systems and Organizations
  • NIST SP 800-18 Guide for Developing System Security Plans
  • NIST SP 800-70 National Checklist Program for IT Products
  • NIST SP 800-161 Supply Chain Risk Management
  • Office of Management and Budget (OMB) relevant directives
  • Homeland Security Presidential Directive 12 (HSPD-12)
  • Gramm-Leach-Bliley Act (GLBA)
  • FBI Criminal Justice Information Services (CJIS) Security Policy ver. 5.8 or later
• Preferred certifications (one or more):
  • AWS Certified Cloud Practitioner
  • AWS Certified DevOps Engineer - Professional
  • AWS Certified Developer - Associate
  • AWS Certified Solutions Architect - Professional
  • AWS Certified Solutions Architect - Associate
  • AWS Certified SysOps Administrator - Associate
  • Certified Cloud Security Professional (CCSP)
  • Certified Ethical Hacker (CEH)
  • Certified Information Security Manager (CISM)
  • Certified Information System Security Professional (CISSP)
  • Certified Information Systems Auditor (CISA)
  • Certified Kubernetes Security Specialist
  • Cisco Certified Network Associate (CCNA) Security
  • CompTIA Security+
  • Computer Hacking Forensic Investigator (CHFI)
  • MuleSoft Certified Integration Architect - Level 1
  • MuleSoft Certified Platform Architect - Level 1
  • Oracle Certified Professional Oracle Database Security Expert
  • Palo Alto Networks Certified Cybersecurity Entry level
  • Palo Alto Networks Certified Network Security Administrator
  • Palo Alto Networks Certified Network Security Engineer
  • Palo Alto Networks Certified Security Automation Engineer
  • Prisma Certified Cloud Security Engineer
  • Splunk Certified Developer
  • Splunk Cloud Certified Admin
  • Splunk Core Certified Advanced Power User
  • Splunk Core Certified Consultant
  • Splunk Core Certified Power User
  • Splunk Core Certified User
  • Splunk Enterprise Certified Admin
  • Splunk Enterprise Certified Architect
  • Splunk Enterprise Security Certified Admin
  • Splunk IT Service Intelligence Certified Admin
  • Splunk Phantom Certified Admin

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3000+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.

This job has expired.