Cloud Security Architect
SES Corporation · Boston, MA · 1 mo ago
HybridOTHRFull-time
About the role
This role supports the U.S. Air Force Cloud One Architecture and Common Shared Services contract. The current opening is for a Cloud Security Architect.
Responsibilities
- Coordinate across multiple areas to support AWS, Azure, Google, and Oracle clouds in a leading, global-scale multi-cloud environment.
- Design, deploy, configure, operate, and maintain authorizations and accreditation of the C1 Architecture for Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle Cloud Infrastructure in NIPRNet and SIPRNet.
- Serve as Subject Matter Expert (SME) for all IT stakeholders involved with system design, system builds, and Authority to Operate (ATO) efforts on cybersecurity requirements and tooling.
- Support the cybersecurity authorizations team in developing artifacts required to achieve milestones such as Interim Authority Test (IATT) and Authorization to Operate (ATO).
- Ensure compliance with SCCA, Cloud SRG, and other STIG/SRG requirements.
- Support Continuous Authorization to Operate (cATO) within a DevSecOps or cloud-based environment, including implementation of automated control validation, continuous monitoring integration, and real-time POA&M management.
- Create RMF-required authorization-related documentation and artifacts and support ATO sustainment activities for C1 and DPaaS environments.
- Conduct routine Insider Threat Assessments and document results in the Contractor's System Security Plan.
- Continuously monitor system resources through automated scanning and implement automated reporting feeds to support cybersecurity authorizations.
- Verify patch compliance using the approved technical solutions and conduct remediation activities.
- Implement security procedures, verify information system security requirements, and coordinate the execution, review, and disposition of STIG checklists for systems, applications, developed code and other components.
- Participate in regular briefings with the customer on cybersecurity status, including preparing briefing materials.
- Work closely with government Cyber & technical teams to support ATO conditions and requirements.
- Prepare detailed technical documentation to support development and operational processes.
- Collaborate with team members and provide mentorship to junior staff, fostering a learning environment.
- Create reference architectures, design patterns, and technical standards for cloud implementations.
Requirements
- Bachelor's Degree and 8+ years or more of experience; Master's and 6+ years or more of experience, additional years of experience may be accepted in lieu of degree.
- An active Secret clearance.
- US citizenship required. Interim Secret clearance required to start; Ability to obtain Secret clearance required to maintain employment.
- CompTIA Security+ or equivalent (IAT-2) certification.
- Experience with USAF Cloud One or Platform 1.
- Experience with Zero Trust Architecture.
- Experience with USAF Cloud One or Platform 1.
- Experience with automation/tools like EvalSTIG, STIG Manager, Ansible etc.
- Cloud certifications in AWS, ACAS, and Cloud Native Services, DoD ACAS certified.
- CISSP or equivalent (IAT-3) certification.
Benefits
SES provides a competitive salary and the following benefits:
- Medical
- Dental
- Vision
- AD&D
- STD/LTD
- Company paid Life Insurance
- 401k with employer contribution
- Paid Time Off
- Pet Insurance