Career Opportunities >> Cloud Security Engineer

Cloud Security Engineer

Summary

Nimbis Services, Inc. is continuing to grow, and we are looking to hire a Cloud Security Engineer to work in the Bowie, MD office.The Cloud Security Engineer will be a member of the Information Assurance team and this position may be filled at a senior level depending upon the candidate.  The IA team supports a cross-functional team at Nimbis who supports the Air Force Research Laboratory Trusted Silicon Stratus Distributed Transition Environment (TSS-DTE). The Senior Cloud Security Engineer will work with the Development Operations (DevOps) team to ensure our TSS-DTE AWS Gov Cloud environment software development life cycle (SDLC) engineering design, development, testing, and implementation complies with DoD Risk Management Framework (RMF) and FedRAMP certification goals. This individual will be responsible for collaboratively working with our Product team in gathering user requirements and testing. Will assist IA team members in configuring and tuning an IT security system (SIEM) to optimize performance and /or alerting.  As well as, assessing the security posture of customers, perform cloud and container security penetration and vulnerability testing, and report on possible deficiencies and provide recommendations for improvement.

The ideal candidate will enjoy problem solving, have strong attention to detail and a must be a self-starter with excellent judgement and risk management techniques. Must also have strong oral and written communication skills with the ability to collaborate.

US Citizen Status is required for this position with potential clearance in the future.

 

Primary Responsibilities

  • Provide expertise on program plans, security engineering, and security and privacy requirements to support to DevOps, Product development of Cloud Computing efforts.
  • Architect enterprise-wide security solutions to meet security requirements for DoD, NIST, FedRAMP and other standards and provide technical expertise to facilitate C&A and obtain system accreditation.
  • Utilize in-depth knowledge of security tools and infrastructure components to support DevSecOps in an enterprise environment to build, maintain, and sustain an Enterprise DevSecOps operational model.
  • Research information security issues, concepts, technologies, and implement cloud security solutions on AWS and Azure using container-based security implementation using Kubernetes, OpenShift and Docker, etc.
  • Assess the security posture of customers, perform cloud and container security penetration and vulnerability testing, and report on possible deficiencies and provide recommendations for improvement.
  • Provide expertise on the network, infrastructure, application, and data security for cloud initiatives.
  • Request and routinely analyze system scans from Nessus, Splunk, Phantom, and other tools to maintain compliance and in support of assessment activities.
  • Perform regular system audits using customer-provided audit reporting system, the enterprise scan system and perform reviews of system log or audit files using ELK and PostgreSQL.
  • Analyzing existing cloud structures and creating new and enhanced security methods, as needed
  • Serve as project leader as needed and mentor other junior members of the team.
  • Support our Responsive Operations Center (ROC) by recommending information technology solutions to resolve customer problems.
  • Integrate solutions with other technology solutions such as active directory, backups, networking devices, security solutions, etc.
  • Design data flow and engineer data life cycle to determine how data is originated, enriched, stored, and disposed to meets RMF ATO and other compliance and business requirements e.g. ISO 27001, etc.
  • Produce documentation such as data flows, data dictionaries, user guides for security tools, or operating procedures, systems design document (SDD), Concept of Operations (CONOPs), Disaster Recovery Documentation (DRP), etc.
  • Ensure systems can achieve the required RMF Authorizations to Operate (ATO) and that the underlying infrastructure is authorized
  • Assist in designing public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards

Specifications

Job Closing Date:
Position is open until filled.

Apply Now


Required Qualifications:

  • Bachelor’s Degree or equivalent number of years’ experience.
  • 2 plus years’ experience in a security architect and/or engineering role that includes cloud security, software engineering and architecture.
  • Experience with cloud architecture and security measures using AWS and Azure platforms and with cloud security implementations.
  • Experience in network, system and web application vulnerabilities, threats, risks and mitigations.
  • Experience in application security, code scans, vulnerabilities, cryptography, network, and web protocols
  • 2 plus years Programming and scripting experience with ideally Python and Shell Scripts. 
  • Experience in penetration testing platforms and vulnerability management tools
  • Familiarity with deployment orchestration, automation, and security configuration management with tools such as CloudFormation or Terraform
  • Demonstrated experience with API's and 3rd Party Integrations with tools such as ServiceNow, Splunk, Tenable, etc.

Preferred Qualifications:

  • Bachelor’s degree in computer science, Engineering, Information Security or related technical field.
  • Experience with government cloud implementations (GovCloud), FedRAMP, NIST cybersecurity framework, ITAR compliance implications of cloud environments.
  • DoD experience
  • Security or Cloud Certifications (CISSP, CISS -ISSAP, CISSP-ISSEP, CASP CE, CSSLP, CISM, CEH, GCIH, AWS Certified solutions architect or Microsoft Azure)
  • Familiarity with RMF standards, FedRAMP, NIST, FISMA compliance, ATO & security compliance
  • Demonstrated experience with Kubernetes, Docker, and/or OpenShift
  • Knowledge of Containerization Technologies on varying Cloud Service Providers, such as Amazon Elastic Container Services (ECS), Amazon Elastic Kubernetes (EKS), Google Kubernetes Engine (GKE), and Azure Kuberneted Service (AKS)

 

 

About NIMBIS

Nimbis Services, Inc. is a privately held software company delivering web-based technical computer application services hosted on cloud and high-performance computing (HPC) platforms. Our software development environment is an open and collaborative one that is team oriented, creative and fun, with a focus on high integrity and customer satisfaction. Our goal is to outperform the competition in the areas of employment, service, security and safety. We strive to provide high quality products and services to our customers. We consider the employees of Nimbis to be our most valuable resource. The work and attitude of our employees is important to the success of Nimbis. Learn more about Nimbis at www.NimbisServices.com. 

We offer competitive benefits that include a flexible work schedule, competitive salary and full benefits. The benefits include medical, dental, vision and 401K. In addition, you will receive paid time for holidays, vacation, sick days and end of year shutdown.

Nimbis Services is an Equal Employment Opportunity (EEO) Employer.

Applicants have rights under Federal Employment Laws: Equal Employment Opportunity (EEO), Family and Medical Leave Act (FMLA), Employee Polygraph Protection Act (EPPA).

If you are interested in joining the team, please fill out our online application. We look forward to talking to you further!