Azure Security Subject Matter Expert

About the job Azure Security Subject Matter Expert

Subject Matter Expert (SME), Azure Security

• This role requires an active DoD Security Clearance at the Secret level or higher.
  Must reside near Fort Meade, MD.

Location: US-MD-Fort Meade, MD (some telecommute)

Qualifications:

• DoD Security Clearance of Secret or higher

Education:

• Bachelor's degree in Computer Science, Information Technology, or a related field. Equivalent work experience may be considered.

Experience:

• 7+ years of experience in cybersecurity, with a minimum of 3 years dedicated to cloud security, specifically in Azure.
• Proven experience securing Azure cloud environments, including designing and implementing security controls within classified DoD or FISMA High environments.
• Extensive experience in federal or DoD settings, with in-depth knowledge of DoD, FISMA, NIST, and RMF compliance requirements.
• Demonstrated success managing security in complex, multi-cloud environments.

Skills:

• Expertise in Azure security tools and services, including Azure Security Center, Azure Sentinel, and Azure Policy.
• Strong understanding of cloud security frameworks, identity and access management (IAM), and encryption techniques.
• Hands-on experience with automating security processes and integrating them into CI/CD pipelines.
• Strong analytical and problem-solving skills, with the ability to assess risks and implement effective mitigation strategies.
• Excellent communication skills, capable of explaining complex security concepts to both technical and non-technical stakeholders.

Preferred Skills:

• Relevant security certifications, such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or Microsoft Certified: Azure Security Engineer Associate.
• Proficient in container security, including securing Kubernetes clusters and Docker containers.
• Familiarity with advanced threat detection and incident response techniques in cloud environments.
• Experience with automation tools, such as Terraform or Ansible, for enforcing security policies.

Responsibilities:

• Design, implement, and oversee security measures for cloud infrastructure, primarily focusing on Azure, ensuring adherence to DoD security guidelines and industry best practices.
• Establish and enforce security policies, procedures, and standards to safeguard cloud-based assets and data.
• Conduct security assessments and vulnerability analyses of cloud environments, identifying and addressing risks.
• Implement identity and access management (IAM) solutions, such as multi-factor authentication (MFA), role-based access control (RBAC), and least privilege principles.
• Monitor and respond to security incidents, ensuring timely resolutions and maintaining documentation of activities.
• Collaborate with cloud architects, DevOps, and development teams to integrate security within CI/CD pipelines and infrastructure as code (IaC).
• Ensure compliance with federal regulations, including FISMA, NIST, FIPS, and RMF, by developing and maintaining security documentation and artifacts.
• Support future AWS-related projects by designing and implementing security controls across both Azure and AWS environments.
• Stay updated on emerging threats, vulnerabilities, and security trends to continuously improve the cloud security posture.
• Provide guidance and training to technical teams on cloud security best practices and compliance requirements.
• Perform additional duties as assigned.

Competitive compensation plan with excellent benefits

Location: Fort George G Meade, MD, US

Posted Date: 11/25/2024