Cloud Security Engineer (TS/SCI)

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

• Provide Cloud Security Engineering support documentation to Cyber Security projects and programs to include: informational and decisional briefs, white papers, architecture and engineering development, acquisition artifacts, and implementation plans.
• Evaluate Cybersecurity postures in the enterprise environment to determine the adequacy of security design and supporting cybersecurity tools. Identify gaps in the environment and propose solutions to enhance the security environment.
• Document how the implementation of a new system or new interface between systems impacts the current and target environment including but not limited to security posture.
• Conduct risk analysis, feasibility study, and/or trade-off analysis to develop, document, and refine functional requirements and specifications in the Enterprise Cloud DevSecOps and Microservices environment.
• Actionable data mapped to a project or program gap, risk, or product requirement (e.g. Cyber Security project X requires a decision brief, architecture and engineering development plan).
• Develop cybersecurity designs to meet specific operational needs and environmental factors (e.g., access controls, automated applications, networked operations, high integrity and availability requirements, multilevel security/processing of multiple classification levels.
• Participate on a team of skilled security engineers responsible for the ingratiation, operations, and sustainment of a suite of enterprise class Cybersecurity technologies
• Perform the planning and implementing policy changes on next generation firewalls
• Work focused special projects both independently and within a group
• Participate in the investigation and documentation of security related incidents
• Implement corrective measures in response to emerging network security threats
• Brief senior contract leadership and government stakeholders on the current status of the enterprise network security posture

• Strong understanding of cloud, routing/switching, firewalls, load balancing and security technologies
• Experience supporting security in enterprise hybrid clouds, specifically AWS C2S
• Related technical experience in network security technologies such as Juniper SRX, Palo Alto Firewall, F5 Load Balancer, Cisco FTD/ASA, Gigamon, FireEye, RSA Netwitness or others (NOTE: these specific tools are listed as examples; expertise in all of these are not expected)
• Zero Trust experience/knowledge is preferred
• Communication: must have strong writing and documentation skills and be able to present information intelligently and brief senior leadership
• TS/SCI Clearance (MUST have at least a TOP SECRET for consideration)
• DOD 8570 IAT Level II certification. (security+ minimum to start)

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
• 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Care plan