E01-L03 Cloud Security Specialist III (GCP/OCI)

Start Date: Immediate

JHNA, CTSi, and EXPANSIA have come together to form a Defense Technology platform focused on delivering high-impact technologies, technology-enabled services and advanced manufacturing solutions to the U.S. Department of Defense and related national security customers. Backed by Falfurrias Management Partners, the platform brings together deep domain expertise across Army, Navy, and Air Force and Space Force programs, digital engineering, systems integration, and specialized manufacturing capabilities.

The combined organization operates as a multi-entity aerospace and defense technology and tech-enabled services and manufacturing enterprise positioned for scalable growth, operational excellence, and long-term value creation.

OVERVIEW

Full-time/Permanent Employee

Location: Remote

Owns and manages you will own and manage the development of InfoSec engineering designs and implementation. Identifies security issues and risks, and develop mitigation plans for cloud implementations. Architect, design, implement, support, and evaluate security-focused tools and services. Oversee assessment and mitigation of system security threats/risks throughout the program life cycle; validation of system security requirements definition and analysis; establishing system security designs; implementing security designs in hardware, software, data, and procedures; verification of security requirements; performing system certification and accreditation planning and testing and liaison activities, and supporting secure systems operations and maintenance. Liaisons with various internal and external groups for security mapping and overall solution integration activities.

In this role, you will support the implementation and maintenance of secure cloud environments while working closely with engineering, development, and program teams. You will contribute to strengthening the overall security posture of cloud-based systems by supporting security engineering activities, implementing security controls, and ensuring compliance with applicable federal and DoD cybersecurity standards.

The proposed salary range for this position is $77,581-$94,500. There are a host of factors that can influence final salary including, but not limited to, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications. Our employees value the flexibility EXPANSIA allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our unique mix of benefits options is designed to support and protect employees and their families. Employment benefits include health and wellness programs, income protection, paid leave and retirement and savings.

RESPONSIBILITIES:
•
Design, deploy, configure, operate, and maintain authorizations and accreditation of the C1 Architecture for Amazon Web Services, Microsoft Azure, Google Cloud Platform (GCP), Oracle Cloud Infrastructure in NIPRNet and SIPRNet.

•
Serve as Subject Matter Expert (SME) for all IT stakeholders involved with system design, system builds, and Authority to Operate (ATO) efforts on cybersecurity requirements and tooling.

•
Support the cybersecurity authorizations team developing artifacts required to achieve milestones such as Interim Authority Test (IATT) and Authorization to Operate (ATO).

•
Experience engineering solutions to support migration of security controls from NIST 800-53 Rev 4 to 800-53 Rev 5.

•
Ensure compliance with SCCA, Cloud SRG, and other STIG/SRG requirements.

•
Support Continuous Authorization to Operate (cATO) within a DevSecOps or cloud-based environment, including implementation of automated control validation, continuous monitoring integration, and real-time POA&M management.

•
Create RMF-required authorization-related documentation and artifacts and support ATO sustainment activities for C1 and DPaaS environments.

•
Conduct routine Insider Threat Assessment and document results in the Contractor’s System Security Plan

•
Continuously monitor system resources through automated scanning and implement automated reporting feeds to support cybersecurity authorizations.

•
Verify patch compliance using the approved technical solutions and conduct remediation activities.

•
Provide and execute a plan for enterprise vulnerability and compliance scanning.

•
Implementation of security procedures, and verify information system security requirements, including coordinating the execution, review, and disposition of STIG checklists for systems, applications, developed code and other components.

•
Participate in regular briefings with the customer on cybersecurity status, including preparing briefing materials

•
Work closely with government Cyber & technical teams to support ATO conditions and requirements.

•
Prepare detailed technical documentation to support development and operational processes

•
Collaborate with team members and provide mentorship to junior staff, fostering a learning environment

•
Perform other related duties as assigned

KEY QUALIFICATIONS:
Clearance: Active Secret Clearance
Education and Years of Experience: Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field with at least 4 years of relevant experience.

•
4+ years of experience with cloud hosted systems and GCP/OCI Cloud Native Services.

•
DoD 8570 / 8140 IAT Level II certification

•
At least one cloud certification

PREFERRED ADDITIONAL QUALIFICATIONS :
•
Experience with USAF Cloud One or Platform 1

•
Experience with automation/tools like EvalSTIG, STIG Manager, Ansible etc.

•
Experience with Zero Trust Architecture

•
Cloud certifications in AWS, Azure, Google, or Oracle clouds

•
Certifications: CISSP or equivalent (IAT-3)

EXPANSIA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.