Cloud Engineer

02 Jun 2024

Vacancy expired!

We're going places, hop on board. Our value is in our employees - smart, passionate, and fun people. Grow with us! As a growing business, every NuAxis Innovations employee impacts the success, and direction of this company. We all share a true passion for technology and enjoy working together to develop solutions, share ideas, and exchange knowledge. At NuAxis Innovations, we celebrate diversity and the unique perspective each team member brings to his/her job, team, and community. We are currently seeking a talented and motivated

Cloud Engineer for a remote Full-Time position. Job Summary: The Contractor shall propose a Cloud Engineer to leads the engineering design, deployment, and operations of large enterprise solutions that span multiple cloud platforms. Reviews business drivers and strategies, understands the implications to applications and interfaces, and identifies/mitigates risks to solutions.
  • Apply the guidance provided in all relevant National Institute of Standards and Technology (NIST) Special Publications in the delivery of IT security services.
  • Develop, document, and implement a continuous monitoring program for the customer information systems and obtain approval of the continuous monitoring strategy by all applicable stakeholders.
  • Provide Assessment and Authorization (A&A) support services for the customer information systems developed or maintained hereunder prior to going into production. Subsequent to the initial authorization to operate, information systems follow the ongoing authorization process and associated continuous monitoring requirements as prescribed by OMB and NIST.
  • Assess the effectiveness of a subset of implemented controls on an ongoing basis to inform the AO's decisions regarding the continued use and operation of the system. A&A documents will be maintained in the Cyber Security Assessment and Management solution (CSAM) or as instructed by the government oversight lead. CSAM is the web-based enterprise-wide application that maintains details and -artifacts related to IT Security boundaries.
  • Perform annual security control assessments in accordance with the Continuous Monitoring Plan.
  • Manage Plans of Action and Milestones (POA&MS).
  • Guide, prepare and support authorization activities of cloud based systems through the FedRAMP process
  • Perform Information System Security Officer (ISSO) responsibilities included but not limited to:
    • Serve as POC for all security matters related to the system
    • Serve as the principal advisor to the information system owner and the CISO/ISSM on all matters (technical and otherwise) involving the security of the information system.
    • Work with information system owner on the development and updating of the Security Plan as well as managing and controlling changes to the system and assessing the security impact of those changes
    • Coordinate with program areas to and assists in the preparation of Interconnection Security Agreements (ISA) to ensure all external connections meet protection requirements and are documented in the Security Plan, Risk Assessment, and security operating procedures
    • Ensure proper access controls have been implemented for both system access and physical access to data processing facilities
    • Participate in planning and executing the System Engineering Life Cycle (SELC) process
    • Provide information security expertise to system development teams
    • Prepare, review or comment on all SELC security documents
    • Ensure appropriate security controls are applied during each SELC Phase (e.g. software CM)
    • Ensure test data is used during system testing
    • Conduct continuous monitoring during Operations and Maintenance Phase, to include:
      • Maintenance of a current ATO
      • Monitoring compliance
      • Conducting Annual Control Assessments
      • Conducting periodic scans
      • Conducting audit log reviews
      • Ensuring media is properly sanitized prior to disposal
Education:
  • Bachelor's degree in a Computer Science, Information Systems, Engineering, or a related field (Masters preferred)
  • 10 years of relevant experience.
  • One or more of the following are desirable but not required:
    • Certified Authorization Professional (CAP)
    • Certified Cloud Security Professional (CCSP)
    • CISSP
    • CISA
    • CISM
Experience: Strong knowledge of the NIST Risk Management Framework, FedRAMP and cloud deployments. Experience with CSAM and Tenable Nessus highly desired. Strong communication and interpersonal skills are required. Does this opportunity sound like a fit for you? If so, join our talent community and click to apply now Our Profile: NuAxis is an IT Services firm providing innovative solutions to the U.S. Federal Government using state-of-the-art technologies, architectures, and life cycle management. We are a Certified Microsoft Partner with extensive Microsoft technologies experience. Our services portfolio includes Project Management, Application Development, Infrastructure Management, and Security Management. We offer competitive salaries, an attractive benefits package, and the opportunity to learn from experts. High technology small business with long-standing U.S. Federal Government experience Visionary executive leadership Expert professional services team comprises highly skilled engineers and software developers Rapid growth over the last several years. NuAxis is an Equal Opportunity/Affirmative Action Employer including Vets and Disabled. Employment contingent upon successful completion of a background investigation At NuAxis Innovations, we are committed to a comprehensive employee benefits program that helps our employees stay healthy, feel secure, and maintain a healthy work/life balance. NuAxis Innovations benefits include medical, dental, vision, spending accounts, disability, basic and supplemental life insurance, a 401(k) plan, paid time off, and additional voluntary benefits. More specific information on benefits eligibility will be provided as part of the interview process. #NAI #Dice