Cloud Computing Specialist Subject Matter Expert

CompQsoft is seeking a Cloud Computing Specialist Subject Matter Expert to join our team of qualified, diverse individuals for the defense project.

Job Description:
Subject matter expert with regards to Certification and Accreditation (C&A) and a broad coverage of the application of the National Institute of Standards and Technology (NIST) Risk Management Framework
(RMF) standards and guidance as outlined in the NIST Special Publication(s) (SP) 800-53 and 800-37
(Current versions).
Works independently with substantial cloud computing security knowledge. Identifies, manages, and resolves cloud computing security risk and implements best practices as applied within a cloud environment (across all the different deployment and service models, and derivatives).

Required Experience / Qualifications (Must Have)
Security Clearance: Secret.
Sensitivity Level: IT-I Critical Sensitive (Tier 5/SSBI) / High Risk.
IA Level: IAT II CompTIA Security+ or other IAT Level II certification.

Certifications:
o Google Associate Cloud Engineer
o 8570-M Baseline Certification: ISC2 Certified Cloud Security Professional
o Plus, one of the following Google Cloud Platform certifications:
Google Associate Cloud Engineer
Google Professional Cloud Architect.

Plus, one of the following:
AWS Certified Cloud Practitioner
AWS Certified Security Specialty
AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Professional
AWS Certified SysOps Administrator
Microsoft Certified: Azure Administrator Associate
Microsoft Certified: Azure Solutions Architect Expert
Microsoft Certified Azure Security Engineer Associate
Oracle Cloud Infrastructure Cloud Operations
Education: None Listed in PWS.

Experience:
o Five (5) years of relevant C&A experience.
o Risk Management Framework (RMF) and NIST C&A.
o DoW Cybersecurity.
o Assessing Cybersecurity Controls and conducting C&A reviews for large, complex Information systems.
o Modern and dynamic computing (e.g., hybrid computing, edge computing, cloud native microservices) and networking protocols or standard Internet of Things (IoT) protocols.
o Well versed in FedRAMP assessment methodology of security and privacy controls deployed in cloud information systems to include six (6) domain areas which include: Architectural Concepts & Design Requirements, Cloud Data Security, Cloud Platform & Infrastructure Security, Cloud Application Security, Operations, Legal & Compliance.
o Five (5) years hands-on experience working with DoW Commercial Cloud Hosting solutions.
o In-depth knowledge of DoW security for Google Cloud Platform.
o Hands-on experience with commercial cloud provider hosting solutions in addition to Google (i.e.
Microsoft Azure, AWS, OCI) and associated relevant industry certifications.
o Experienced with various cloud deployment solutions and offerings (IaaS, PaaS, SaaS)
o Cyber Security and Risk Management: Deep knowledge of cloud security principles and best practices.
o Strong understanding of NIST controls, DISA Security Technical Implementation Guides (STIG)/ IAVAs, and DoD Cloud Computing Security Requirements Guide (CC SRG) relating to cybersecurity
principles with experience in identifying, assessing, and mitigating risks associated with security posture as well as prepping and supporting successful audits.
o Documentation and Reporting: Skilled in preparing and organizing comprehensive cybersecurity audit reports and technical documentation.
o Knowledge and understanding of solutions and strategies to meet or exceed requirements of DoD Zero Trust.

Preferred Experience / Qualifications (Nice to Have)
Supported DLA or other DoW Agency.
Has the communication skills to effectively interface with senior military officials, managers, and subordinates.

Contact:

For more open requirements, please visit ;

About Us:
CompQsoft Inc. Established in 1997, headquarters in Houston, TX and office in Leesburg, VA. CompQsoft offers a range of comprehensive Cyber Security, Infrastructure, Cloud solutions, ERP implementation, Business Intelligence, Application development, Ecommerce applications and Management consulting services. CompQsoft is Certified CMMI Level 3 practitioner for Development and Services, ISO 9001:2015, ISO 27001:2013 & ISO 20000-1:2011 Certified. CompQsoft is a fast-growing company with a strategy and methodology that is strongly focused on the success of our clients, predominantly the Federal government.

CompQsoft provides equal opportunity in all aspects of employment and in the working environment to all employees and applicants. CompQsoft does not take any non-merit factors like race, color, religion, sex (gender), mental/physical disability, and age into account for purposes of recruitment, hiring and development.

Visit to learn more about our culture, benefits.