Cloud Security and Risk Management Framework (RMF) Subject Matter Expert (SME)

Company Overview

Enterprise Horizon Consulting Group (EHCG) is a Woman-Owned Small Business specializing in IT Consulting which has successfully delivered key capabilities to the Navy, Army, and NASA over the past 20+ years. EHCG provides best in class services to its customers in the following areas: Business Systems Services; Business Intelligence; Data Analytics and Dashboarding; Enterprise Resource Planning (SAP) Implementation; Legacy System Optimization; Digital Transformation; Cloud Migration; Integration and Modernization; and Risk Management Framework Processes (RMF).

Job Description

Enterprise Horizon Consulting Group is seeking a highly skilled Cloud Security and Risk Management Framework (RMF) Subject Matter Expert (SME) with deep expertise in Certification & Accreditation (C&A), NIST RMF standards, and secure cloud operations. This role requires advanced knowledge of NIST SP 800 53 and 800 37, hands on experience securing Oracle Cloud Infrastructure (OCI) at DoD Impact Level 5 (IL5), and the ability to work independently while providing authoritative guidance on cloud security best practices.

The ideal candidate brings strong technical leadership, proven experience assessing and securing complex cloud environments, and the ability to drive modernization and compliance initiatives across diverse cloud deployment and service models.

Key Responsibilities

• Provide cloud tenancy services and deliver enhanced capabilities within an Oracle Cloud Infrastructure (OCI) hosting environment.


• Secure, isolate, and administer the cloud tenancy to effectively create, organize, integrate, and manage cloud resources.


• Research, evaluate, and implement new OCI services and capabilities to improve operational performance and strengthen security posture.


• Administer middleware and web tiers, manage single sign on (SSO), and create/manage users, groups, and access controls.


• Apply expert knowledge of NIST RMF, C&A processes, and DoD cybersecurity requirements to assess controls, identify risks, and ensure compliance.


• Support the design, implementation, and maintenance of cloud-native security configurations, including Oracle CloudGuard.


• Conduct C&A reviews for large, complex information systems and ensure alignment with DoD, NIST, and FedRAMP requirements.


• Provide technical leadership across cloud service engineering, including distributed systems, virtualized infrastructure, identity, observability, and security.


• Manage and support Autonomous Database, Oracle Enterprise Database, and Oracle Database Cloud Service (DBCS).


• Deploy and manage containerized applications using Oracle Kubernetes Engine (OKE).


• Automate tasks using scripting and IaC tools such as Ansible (OCI compliant), HELM, and Terraform.


• Apply expertise in modern computing paradigms including hybrid cloud, edge computing, microservices, and IoT related protocols.

Requirements

Minimum Requirements

• Must have an active Secret clearance.


• Must possess a DoD Approved 8570 IAM Level I baseline certification (e.g., Security+ or equivalent)


• Must possess a Cloud Computing Security Certification, such as:




• Certified Cloud Security Professional (CCSP)


• Certificate of Cloud Security Knowledge (CCSK)


• OCI Specialty Certification




• Minimum 5 years of experience supporting DoD IL5 Oracle Cloud Infrastructure (OCI) administration, maintenance, and operations.


• Experience across multiple OCI technical domains, including:




• Information Systems Architecture


• Security Engineering (STIGs, DoD Cloud SRG, policies)


• Communications and Network Systems Management




• Demonstrated expertise with RMF, NIST C&A, and DoD cybersecurity frameworks.


• Experience assessing cybersecurity controls and conducting C&A reviews for large, complex systems.


• Strong understanding of FedRAMP assessment methodology, including all six domain areas:




• Architectural Concepts & Design Requirements


• Cloud Data Security


• Cloud Platform & Infrastructure Security


• Cloud Application Security


• Operations


• Legal & Compliance




• Proven ability to solve complex problems across cloud software engineering, distributed systems, identity, security, and observability.


• Experience configuring and managing cloud-native security tools, including Oracle CloudGuard.

Benefits

Benefits

We offer full-time salaried employees competitive salaries with a range of benefits, including:

• Medical, Dental, & Vision
• Life Insurance, Short-term Disability, Long-term Disability
• SIMPLE IRA with Company Match
• Federal Holidays
• Vacation & Sick Leave

$500 Referral Bonus

If this position is not a perfect fit for you, but you know someone who would be a great match, please refer them to us via our Candidate Referral Program by going to: . If we hire them, you could receive $500! See the link for further details.

Enterprise Horizon Consulting Group is an equal opportunity employer. Enterprise Horizon Consulting Group does not discriminate against any employee or applicant for employment on the basis of race, color, religion, sex, marital status, sexual orientation, gender identity, national origin, ancestry, age (40 and over), physical or mental disability, or protected veteran status, or any other protected status in accordance with all applicable federal, state and local laws.