NLM OCCS ITSS
We are seeking a Sr. Network Security Architect with Cloud expertise for a NLM contract. This is a remote position.
The responsibilities of the Network Security Architect encompass:
Collaborating with other DevOps and SysOps teams to transition public facing, on-premises applications to the Cloud; securing the configuration management of the Cloud infrastructure; mitigating risks, and applying security controls to improve visibility and diagnostics in compliance with governing Federal requirements and security best practices.
Developing and deploying infrastructure as a code scripts to implement and optimize security controls and mechanisms of a cloud infrastructure including initial and ongoing configuration of related automation and administration.
Acting as the subject matter expert for cloud security and associated tools such as Security Information and Event Management (SIEM), access control mechanisms, Intrusion Detection and Intrusion Prevention Systems (IDS/IPS).
Monitoring Cloud infrastructure and pro-actively mitigate potential incidents before service degradation occurs.
Providing guidance to our DevOps teams developing on public cloud platforms, advising on security standards for cloud deployment, and working to identify common patterns for template provisioning.
Conducting assessments of security controls for new and existing cloud systems; creating and maintaining as-built system documentation, architecture diagrams, and online collaborative documentation such as Wiki. Determining security modes of operation and recommending new or revised security measures and countermeasures for current security challenges.
Degree Required: BS
Minimum Work Experience: 7 years
Minimum Specialized Experience: 5 years of system administration; 5 years of system security administration
Degree Substitution for minimum work experience: No degree: 11 years, MS: 5 years
Certifications: CISSP (if not in hand, required to obtain within 6+ months from start of role)
Desired Certifications: AWS Certified Security – Specialty, ISC2, or Cloud Security Alliance
Specialized Experience includes:
Security Clearance: Ability to obtain Public Trust