Cybersecurity Assessment and Authorization - Cloud Certified SME

Cybersecurity Assessment and Authorization - Cloud Certified SME

Location: 100% Remote

Serves as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures. Performs a DOD cybersecurity process serving as a SME for an information system undergoing authorization. Possess an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization s IT infrastructure in which there is a compilation of large and small enclaves, AIS applications and IT processes. Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control) and determines the possible ramifications on the system s current or future authorization. Provides audit readiness and sustainment support by participating in all phases of audit and creates compliance documentation. Ensure Cybersecurity compliance and corresponding RMF, ATO, audit documentation is maintained in a repository to include any dates and/or modifications to all relevant documented artifacts.

Minimum Requirements:

• Five (5) years of relevant Risk Management Framework (RMF) and NIST A&A experience, Zero Trust, SCCA FRD and SRG.
• Certification as a Certified Cloud Security Professional
• DOD cybersecurity experience:
• Experienced in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures, and processes.
• Knowledgeable in the cybersecurity of emerging technology areas such as Cloud and Industrial Control Systems (ICSs), warehouse execution systems, and Operational Technology (OT) infrastructures.
• Must possess IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) at time of proposal

• submission.

• DoD Approved 8570/8140 Baseline Certification at time of submission: Category IAT Level II
• Experience in assessing Information Assurance Controls and conducting Certification &

• Accreditation reviews for large, complex organizations.

• Must have strong business and technical writing skills.
• Strong analytical and problem-solving skills for resolving security issues.
• Experience with DoD Audit Readiness.

Requires at least one industry Cloud certification(s):

AWS Cloud Practitioner, AWS Developer Associate, AWS Solutions Architect, AWS SysOps Administrator, AWS DevOps Engineer, AWS Solution Architect, AWS Advanced Networking, AWS Data Analytics, Oracle Cloud Infrastructure Foundations, Oracle Cloud Data Management Foundations, Oracle Cloud Infrastructure Architect Foundations, Oracle Cloud Infrastructure Professional, Oracle Cloud Infrastructure Security Professional, Oracle Clous Database Service Professional, Oracle Cloud Database Migration and Integration Professional, OCO Observation and Management Professional, Oracle Cloud Platform Enterprise Analytics Professional, Azure Fundamentals, Azure Development Associate, Azure AI Engineer Associate, Azure Administrator Associate, Azure Solutions Architect Expert, Google Cloud Platform Cloud Engineer, Google Cloud Platform Cloud Architect.

• Certified with Comptia Security+ (Good to have)
• Certified CCSP (Certified Cloud Security Professional) (Mandatory)