Security - Azure Cyber Security SME - Quadrant, Inc.
Ft. Meade, MD 20707
About the Job
Azure Cyber Security Subject Matter Expert (SME)
Ft. Meade, MD
MUST:
Active Secret or TS
Experienced Azure Cyber Security Subject Matter Expert (SME)
Relevant security certifications, such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or Microsoft Certified: Azure Security Engineer Associate
7+ years of experience in cybersecurity, with at least 3 years focused on cloud security in Azure
Must have strong background in cloud security, compliance with DoD regulations, and hands-on experience with Azure
Demonstrated experience securing cloud environments in Azure, including the design and implementation of security controls in a classified DoD or FISMA High environment
Experience working in a federal or DoD environment, with a strong understanding of DoD, FISMA, NIST, and RMF compliance requirements.
Proven track record of managing security in complex, multi-cloud environments
Expertise in Azure security tools and services, such as Azure Security Center, Azure Sentinel, and Azure Policy
Strong knowledge of cloud security frameworks, identity and access management (IAM), and encryption techniques
Experience with security automation and integration within CI/CD pipelines.
Strong analytical and problem-solving skills, with the ability to assess risks and implement effective mitigation strategies
Excellent communication skills, with the ability to convey complex security concepts to technical and non-technical stakeholders
Bachelor s degree in Computer Science, Information Technology, or a related field. Equivalent work experience may be considered
DUTIES:
Azure Security SME to support the Defense Information Systems Agency (DISA) in implementing cloud infrastructure for a software modernization project
The primary focus will be on securing and accrediting Azure FISMA High cloud DevSecOps environments
The ideal candidate will have a strong background in cloud security, compliance with DoD regulations, and hands-on experience with Azure
Design, implement, and manage security controls for cloud infrastructure, with a primary focus on Azure, ensuring alignment with DoD security requirements and best practices
Develop and enforce security policies, procedures, and standards to protect cloud-based assets and data
Conduct security assessments and vulnerability analysis of cloud environments, identifying and mitigating risks
Implement identity and access management (IAM) controls, including multi-factor authentication (MFA), role-based access control (RBAC), and least privilege principles
Monitor and respond to security incidents, ensuring timely resolution and documentation of all activities
Collaborate with cloud architects, DevOps teams, and developers to integrate security into the CI/CD pipeline and infrastructure as code (IaC) practices
Ensure compliance with federal regulations, including FISMA, NIST, FIPS, and RMF, by developing and maintaining security documentation and artifacts
Support future project phases involving AWS by designing and implementing security measures across both Azure and AWS environments
Stay current with emerging threats, vulnerabilities, and security trends, applying this knowledge to enhance the security posture of cloud environments
Provide guidance and training to technical teams on cloud security best practices and compliance requirements
Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability.
Ft. Meade, MD
MUST:
Active Secret or TS
Experienced Azure Cyber Security Subject Matter Expert (SME)
Relevant security certifications, such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or Microsoft Certified: Azure Security Engineer Associate
7+ years of experience in cybersecurity, with at least 3 years focused on cloud security in Azure
Must have strong background in cloud security, compliance with DoD regulations, and hands-on experience with Azure
Demonstrated experience securing cloud environments in Azure, including the design and implementation of security controls in a classified DoD or FISMA High environment
Experience working in a federal or DoD environment, with a strong understanding of DoD, FISMA, NIST, and RMF compliance requirements.
Proven track record of managing security in complex, multi-cloud environments
Expertise in Azure security tools and services, such as Azure Security Center, Azure Sentinel, and Azure Policy
Strong knowledge of cloud security frameworks, identity and access management (IAM), and encryption techniques
Experience with security automation and integration within CI/CD pipelines.
Strong analytical and problem-solving skills, with the ability to assess risks and implement effective mitigation strategies
Excellent communication skills, with the ability to convey complex security concepts to technical and non-technical stakeholders
Bachelor s degree in Computer Science, Information Technology, or a related field. Equivalent work experience may be considered
DUTIES:
Azure Security SME to support the Defense Information Systems Agency (DISA) in implementing cloud infrastructure for a software modernization project
The primary focus will be on securing and accrediting Azure FISMA High cloud DevSecOps environments
The ideal candidate will have a strong background in cloud security, compliance with DoD regulations, and hands-on experience with Azure
Design, implement, and manage security controls for cloud infrastructure, with a primary focus on Azure, ensuring alignment with DoD security requirements and best practices
Develop and enforce security policies, procedures, and standards to protect cloud-based assets and data
Conduct security assessments and vulnerability analysis of cloud environments, identifying and mitigating risks
Implement identity and access management (IAM) controls, including multi-factor authentication (MFA), role-based access control (RBAC), and least privilege principles
Monitor and respond to security incidents, ensuring timely resolution and documentation of all activities
Collaborate with cloud architects, DevOps teams, and developers to integrate security into the CI/CD pipeline and infrastructure as code (IaC) practices
Ensure compliance with federal regulations, including FISMA, NIST, FIPS, and RMF, by developing and maintaining security documentation and artifacts
Support future project phases involving AWS by designing and implementing security measures across both Azure and AWS environments
Stay current with emerging threats, vulnerabilities, and security trends, applying this knowledge to enhance the security posture of cloud environments
Provide guidance and training to technical teams on cloud security best practices and compliance requirements
Source : Quadrant, Inc.
