Cloud Security Architect

ClearanceJobs

United States

United States

Postuler Maintenant

À propos

divh2Cloud Security Architect/h2pBigBear.ai is seeking a Cloud Security Architect with an active TS/SCI with Poly clearance to design and implement secure cloud architectures that support an ATO Automation Platform deployment while ensuring compliance with federal security requirements. This role leads the technical implementation of an ATO Automation Platform across multi-cloud and hybrid environments, establishes secure integrations with cloud service providers, and ensures the platform operates within customer security boundaries and authorization scopes. This position will be based out of our Columbia, MD office but will support multiple customers in the Baltimore/Washington corridor and beyond./ppWhat You Will Do:/pulliDesign secure reference architectures for deploying an ATO Automation Platform in AWS GovCloud, Azure Government, and on-premises environments/liliImplement secure API integrations between the ATO Automation Platform and cloud service provider platforms for real-time configuration analysis/liliConfigure cloud security services (AWS GuardDuty, Azure Security Center) to feed security findings into the ATO Automation Platforms compliance monitoring/liliEstablish security boundaries and authorization scopes for systems under the ATO Automation Platforms management/liliImplement data protection controls including encryption at rest and in transit for compliance artifacts processed by the ATO Automation Platform/liliDesign network security architectures supporting the ATO Automation Platform deployment in classified environments/liliConduct security assessments of an ATO Automation Platform components and validate compliance with customer security overlays/liliDevelop cloud infrastructure-as-code templates that incorporate security controls mappable by the ATO Automation Platform/liliDesign AWS GovCloud reference architecture for deploying the ATO Automation Platform in FedRAMP High environment with appropriate VPC segmentation and encryption/liliConfigure the ATO Automation Platforms integration with Azure Government APIs to enable automated analysis of NSG rules and Key Vault configurations/liliImplement cross-account IAM roles enabling the ATO Automation Platform to perform read-only assessments of 50+ AWS accounts across an agency/liliDesign hybrid cloud architecture supporting the ATO Automation Platform deployment for systems spanning on-premises data centers and commercial cloud/liliConduct security assessment of the ATO Automation Platforms LLM processing to ensure compliance with agency data handling requirements/li/ulpWhat You Need To Have:/pulliBachelors Degree with a Technical concentration with at least 10 years of professional experience/liliTS/SCI with an active Poly clearance/liliDeep expertise in cloud security architectures across AWS GovCloud and Azure Government/liliStrong understanding of cloud security services and compliance capabilities/liliExperience with FedRAMP authorization processes and cloud security requirements/liliProficiency in cloud IAM design and least-privilege access models/liliKnowledge of network security architecture including VPCs, security groups, and network segmentation/liliExperience with encryption technologies and key management services/liliUnderstanding of API security and secure integration patterns/liliFamiliarity with cloud compliance frameworks (AWS Security Best Practices, Azure Security Benchmark)/li/ulpWhat Wed Like You To Have:/pulliExperience deploying security platforms in classified cloud environments (AWS Secret/Top Secret regions, Azure Government Secret)/liliKnowledge of DoD Cloud Computing Security Requirements Guide (SRG) implementation/liliPrior experience with compliance automation platform deployments/liliCertifications: AWS Certified Security Specialty, Azure Security Engineer Associate, CCSP (Certified Cloud Security Professional)/liliUnderstanding of zero-trust architecture principles and implementation/liliExperience with Infrastructure as Code security scanning (Checkov, tfsec, Terrascan)/liliFamiliarity with container security in cloud environments/liliBackground in federal cloud migration projects and Cloud Smart strategy/li/ulpAbout BigBear.ai:/ppBigBear.ai is a leading provider of AI-powered decision intelligence solutions for national security, supply chain management, and digital identity. Customers and partners rely on BigBear.ais predictive analytics capabilities in highly complex, distributed, mission-based operating environments. Headquartered in McLean, Virginia, BigBear.ai is a public company traded on the NYSE under the symbol BBAI. BigBear.ai is an Equal opportunity employer all protected groups, including protected veterans and individuals with disabilities./p/div

United States

Compétences linguistiques

English

Avis aux utilisateurs

Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.

Postuler Maintenant