Sr. Network Security Architect w Cloud - NLM (obtain Public Trust)

CISSP, aws, Cloud security, SIEM, Vulnerability management, Security, CASP, CISM, CSSLP, Network security, IDS, IPS, Intrusion prevention, Security controls, Networking, System security, System administration, TCP/IP, WAF, Network traffic packet capture and netflow data, Amazon Web Services, Cloud, Wireshark, tcpdump
Contract W2, Contract Independent
$100+
Work from home available

Job Description

Remote

Program Name:

NLM OCCS ITSS

We are seeking a Sr. Network Security Architect with Cloud expertise for a NLM contract. This is a remote position.

 

Job Description:

Duties:

The responsibilities of the Network Security Architect encompass:

Collaborating with other DevOps and SysOps teams to transition public facing, on-premises applications to the Cloud; securing the configuration management of the Cloud infrastructure; mitigating risks, and applying security controls to improve visibility and diagnostics in compliance with governing Federal requirements and security best practices.

Developing and deploying infrastructure as a code scripts to implement and optimize security controls and mechanisms of a cloud infrastructure including initial and ongoing configuration of related automation and administration.

Acting as the subject matter expert for cloud security and associated tools such as Security Information and Event Management (SIEM), access control mechanisms, Intrusion Detection and Intrusion Prevention Systems (IDS/IPS).

Monitoring Cloud infrastructure and pro-actively mitigate potential incidents before service degradation occurs.

Providing guidance to our DevOps teams developing on public cloud platforms, advising on security standards for cloud deployment, and working to identify common patterns for template provisioning.

Conducting assessments of security controls for new and existing cloud systems; creating and maintaining as-built system documentation, architecture diagrams, and online collaborative documentation such as Wiki. Determining security modes of operation and recommending new or revised security measures and countermeasures for current security challenges.

Qualifications:

Degree Required: BS

Minimum Work Experience: 7 years

Minimum Specialized Experience: 5 years of system administration; 5 years of system security administration

Degree Substitution for minimum work experience: No degree: 11 years, MS: 5 years

Certifications: CISSP (if not in hand, required to obtain within 6+ months from start of role)

Desired Certifications: AWS Certified Security – Specialty, ISC2, or Cloud Security Alliance

Specialized Experience includes:

  • Designing and implementing a Cloud security architecture
  • Creating and editing AWS Cloud Formation scripts
  • Network discovery and port scanning tools
  • Network traffic packet capture and netflow data
  • WAF
  • IPv4 vs IPv6 environment
  • Securing and monitoring Kubernetes
  • Managing, and monitoring a centralized AWS logging architecture
  • Proficiency with SIEM and vulnerability management solutions.
  • Proficiency with TCP/IP/UDP ports and protocols, IDS/IPS, network access control list (NACL) Access Control Lists (ACL) and Security Group (SG) applications
  • Experience using common networking tools to aid in troubleshooting, including nmap, Wireshark, tcpdump, etc.
  • Proficient in one or more scripting languages such as Python, Perl, Powershell, Bash, etc.
  • Strong written and verbal communications skills.
  • Process and detail oriented.

Security Clearance: Ability to obtain Public Trust

Dice Id : asdinc
Position Id : RQ92946
Originally Posted : 10 months ago
Have a Job? Post it

Similar Positions

Cloud Security Architect.
  • SecureKloud Technologies Inc
  • San Francisco, CA, USA
Cloud Security Consultant
  • Sky Systems.AI
  • Phoenix, AZ, USA
Network Security
  • Kodi Inc
  • Columbus, OH, USA
Sr. Security Analyst
  • AIT Global, Inc.
  • Mount Laurel Township, NJ, USA
Security Engineer
  • Elix, Inc
  • New York, NY, USA
Cloud Security Architect
  • Mastech Digital
  • San Jose, CA, USA
Cloud Security Engineer
  • Vings Technologies
  • Santa Clara, CA, USA
Cloud Security Engineer -CSPM
  • Vings Technologies
  • Santa Clara, CA, USA
Cloud Security Engineer
  • Vings Technologies
  • Santa Clara, CA, USA