Job TypeFull-timeDescriptionOptimized Technical Solutions (OTS) is currently seeking a qualified Security Expert III to add to our team. The Security Expert will assist in leading a cybersecurity support team in the planning, design, development, testing, demonstration, and integration of information systems. An active DoD Top Secret clearance is required for this position.The Security Expert will be responsible for, but not limited to, the following:
- Leading a variety of routine project tasks applied to specialized cybersecurity problems.
- Assessment and authorization activities for DoD information systems.
- Utilizing eMASS to document security control test results.
- Effectively communicating cyber requirements, risks, and recommendations to stakeholders and the leadership team.
- Creating and updating RMF-related artifacts specific to NIST security control families.
- Developing the System Security Plan and other applicable plans using the Risk Management Framework (RMF) for DoD Information Technology (IT).
- Performing STIG reviews, providing remediation and mitigation recommendations.
- Integration of electronic processes/methodologies to resolve total system or technology problems as they relate to cybersecurity requirements.
- Leading mitigation of vulnerabilities derived from security scans.
- Developing and implementing policies and procedures to ensure that systems support the organization's business requirements and meet the needs of end users.
- Defining system requirements based on user/client needs and required integration with existing applications, systems, or platforms.
- Defining technical standards and functionality tests.
- Developing specifications, prototypes, or initial user guides.
RequirementsMinimum Candidate RequirementsCandidate must be a U.S. CitizenCandidate must have an active DoD Top Secret Security Clearance at minimumCandidate must have active/current DoD 8140 (8570) IAM Level II certification (CISSP, CISA, GCIH, etc.)Candidate must have a bachelor's degreeCandidate must have 18+ years' experience with the following:
- Azure (which may be augmented by Data Center-centric security and cyber operations)
- Cloud cybersecurity
- Azure Continuous Monitoring and Remediation
- Authorization and Accreditation
- Risk Management Framework
- eMASS expertise
- ACAS expertise
- NIST SP 800-53
Desired Knowledge, Skills, Abilities
- Edge Computing
- SAFe Agile
- Azure Security Certification (AZ-500, SC-100)
- Palo Alto PRISMA Cloud
Work EnvironmentOffice environment. Requires ability to provide clear, concise, accurate and timely communication, both verbally and in writing (100%). Requires ability to interact professionally with co-workers, management, and client (100%). Occasional business travel may be required. The pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.