Principal Security Consultant
Kratos Defense and Security Solutions · Herndon, VA · 1 wk ago
Information TechnologyFull-time
About the role
Kratos Defense & Security Solutions is seeking a Principal Security Consultant to join our hybrid work environment. The ideal candidate will have extensive experience in evaluating and securing innovative cloud computing solutions and will contribute to the growth of FedRAMP consulting and assessment practices.
Responsibilities
- Lead and support teams in evaluating and securing cloud computing solutions on advanced cloud and on-premises infrastructures.
- Provide security consulting services and perform security assessments.
- Contribute to the development of creative approaches, methodologies, and tools to meet client needs.
- Provide technical expertise and remain current on technology trends.
- Support business development and sales efforts.
- Manage and support assessment teams conducting FedRAMP, DoD SRG, and NIST RMF security assessments.
- Review and validate CSP compliance with security control baselines.
- Evaluate cloud security implementations across various IaaS environments.
Requirements
- Maintain a CISSP and one or more of the following certifications: CASP+, CE, GCED, GCIH, GSLC, CISA, CISM, CCSP, CISSP-ISSAP, CISSP-ISSEP, CISSP-ISSMP, CFR, CCISO.
- Demonstrated understanding of the FedRAMP process.
- Ability to independently manage project teams and serve as a trusted advisor for specialized technical expertise.
- Sufficient technical knowledge and understanding of cloud solutions, architecture, networks, protocols, cryptography, and identity and access management.
- Excellent interpersonal and communication skills, both written and verbal.
- Active DoD Top Secret clearance or higher.
- Prior 3PAO or DoD assessor experience preferred.
- Experience leading assessment teams or serving as a technical SME.
- Experience with automation, IaC, or cloud-native security tooling.
- AI familiarity is a plus.
Skills
- Firm understanding of information security principles and their application.
- Extensive experience with Department of Defense (DoD) Cloud Service Provider (CSP) Security Requirements Guide (SRG).
- Experience with Federal Risk and Authorization Management Program (FedRAMP).
- Knowledge of other frameworks and publications like NIST Publications, CMMC, etc.
Benefits
- Medical, Dental & Vision Insurance Coverage
- Life/ADD & Short/Long Term Disability Insurance
- 401(k) Savings Plan
- Employee Stock Purchase Plan (ESPP)
- Paid Time-Off (PTO)
- Holidays
- Education Reimbursement
Pay
Competitive salary based on experience and education.
Schedule
Hybrid work environment.
Qualifications
Minimum education level needed: Bachelor's degree in computer science or related field or relevant work experience.
Minimum # of years of job-related experience needed: Seven (7) years of cybersecurity experience.