Alignment Posture Bra Jobs in Usa

4,010 positions found — Page 3

Chief Financial Officer (Education)
✦ New
🏢 International Leadership of Texas
Salary not disclosed
Richardson, TX 1 day ago

Primary Purpose: The Chief Financial Officer will provide leadership for all budgets and financial decisions for the charter. Develop and execute strategic plans and charter-wide policies and programs related to financial activities. Direct and lead all departments relating to finance including accounting, accounts payable/receivable, tax and finance, budget/financial planning, procurement, debt services, compliance, auditing, and federal grants. Projects and reports financial health to the CEO and Board members.


Qualifications: Education/Certification: Bachelor’s Degree in Business Administration, Finance, or Economics Master’s Degree Preferred Certified Public Accountant Certification Preferred Special


Knowledge/Skills: Comprehensive understanding of how to develop financial models for sustainability and efficiency to utilize all available resources including grants management for cash flow cycling. Capable of leading a team of finance professionals, proficient in management accounting software, payroll systems, and procurement systems from selection to alignment and implementation.


Extreme flexibility, with a strong work ethic and an entrepreneurial spirit to accommodate the high level of responsibility and multiple priorities.


Ability to work effectively in a fluid environment and with a wide range of constituents, including board members, financial institutions, Texas Education Administration, school personnel, and vendors to establish a culture of support, compliance, accountability, and performance.


Experience: Five years of significant work experience with organizations as a CFO or Director of Finance with non-profit or education organizations strongly preferred


Major Responsibilities and Duties:


Leadership Roles: Strategic oversight for multiple departments and/or a major division or for the entire district. Provides strategic direction and develops long-range plans which impact multiple departments or divisions. Using in-depth knowledge of multiple disciplines identifies and evaluates high-impact issues and provides strategy and direction to a major functional area or multiple departments. Establishes programs and policies, and ensures integration of operational objectives across multiple, major departments, program areas, and possibly charter wide.


Work Complexity/Independent Judgement: Work is highly complex and broad in scope covering several departments/divisions across ILTexas. Policy, procedures, and precedent are created and approved by this position. Supervision received typically consists of providing periodic coaching, advice, and feedback.


Budget Authority: Approves Budgets Problem Solving: Greater latitude and discretion is warranted in making decisions, which affect major areas of ILTexas and possibly the organization's public image. The job is constantly expected to apply creative solutions to complex problems and develop new ideas and concepts. Reviews and approves decisions and/or recommendations that may have a significant impact on the entire organization.


Impact of Decisions: Decisions have a major impact to multiple departments and impact the general direction of ILTexas. Errors may cause continuous adverse influence on the future operations and growth of the organization, in matters involving important customer commitments, organizational liability, and other matters which may appreciably affect future costs.


Communication/Interactions: Oversee and direct - serves as one of the organization's senior-level spokespersons in area of expertise, defines and champions change initiatives, organizational strategies, services, policies, and practices. Interactions are typical with Top Management, the Board, and community and business leaders.


Customer Relationships: Anticipates customer needs and identifies and champions opportunities for the development and implementation of new services and methods to meet or exceed customer needs. Establishes customer service standards and feedback mechanisms across departments.


Financial Planning and Projections: Leads ILTexas’s financial planning and multi-year forecasting to ensure long-term fiscal sustainability. Responsibilities include developing the annual budget, maintaining rolling projections aligned to enrollment, Foundation School Program (FSP) revenues, federal funding, staffing models, capital plans, and debt service, and conducting scenario-based analyses to inform executive and Board decision-making. The CFO proactively identifies financial risks and opportunities, ensuring alignment between strategic priorities and available resources while maintaining full regulatory compliance.


Additional Duties: Any and all other duties assigned by immediate supervisor. Supervisory Duties: Supervise, evaluate, and recommend the hiring and firing of Finance department employees.


Mental Demands/Physical Demands/Environmental Factors:


Tools/Equipment Used: Standard office equipment including personal computer and peripherals


Posture: Prolonged sitting; occasional bending/stooping, pushing/pulling, and twisting


Motion: Repetitive hand motions including frequent keyboarding and use of mouse; occasional reaching


Lifting: Occasional light lifting and carrying (less than 15 pounds)


Environment: May work prolonged or irregular hours; frequent districtwide travel; occasional statewide travel and out-of-state travel


Mental Demands: Work with frequent interruptions, maintain emotional control under stress

Not Specified
Project Manager (CMMC & Azure)
✦ New
🏢 Enterprise Engineering Inc. (eei)
Salary not disclosed
Berwyn, PA 8 hours ago

Project Manager: CMMC Enclave Build & Multi-Business Rollout

(Azure + Microsoft Security | 3rd Party Managed Services)

Project duration: 6–9-months

Philadelphia, PA


Summary:

We are seeking a contract Project Manager to lead a high-visibility IT infrastructure and cybersecurity initiative to build a secure CMMC-aligned enclave in Azure and enable multiple businesses to onboard and operate within the environment to support third-party certification readiness.

The enclave’s infrastructure and security services are delivered and operated by an outsourced managed services provider (MSP/MSSP). This role will manage execution across internal stakeholders and the MSP/MSSP, ensuring delivery is aligned to technical requirements, compliance expectations, timelines, and audit-ready documentation.


Key Responsibilities

  • Lead end-to-end project execution for the expanded design, build, and rollout of a secure Azure-based CMMC enclave, supporting multiple business entities.
  • Serve as the primary project manager coordinating across IT/Security stakeholders, business units, and the MSP delivering the environment.
  • Develop and maintain the integrated project plan, timeline, milestones, and RAID log (risks/actions/issues/decisions).
  • Manage vendor/MSP&MSSP delivery including scope alignment, execution tracking, dependencies, deliverable acceptance, and issue escalation.
  • Establish clear scope boundaries between the enclave “core baseline” (shared services) and business-specific customization requirements.
  • Coordinate technical implementation and readiness activities delivered through the MSP, including:
  • Azure landing zone / subscription structure, segmentation, and governance
  • Network design and isolation (hub/spoke, routing, connectivity, firewalling)
  • Identity and access management using Entra ID (Azure AD), MFA, RBAC, Conditional Access
  • Endpoint management and hardening using Intune and Defender for Endpoint
  • Security posture management and compliance monitoring using Microsoft Defender for Cloud
  • Centralized logging/monitoring using Microsoft Sentinel (SIEM), Log Analytics, alerting
  • Key management / secrets / encryption (Key Vault, encryption at rest/in transit)
  • Backup/recovery strategy, retention planning, and operational support readiness
  • Drive creation of a repeatable multi-business onboarding framework, including intake, standard configurations, variation handling, and validation.
  • Partner with Cybersecurity and compliance stakeholders to translate CMMC/NIST expectations into actionable work packages and measurable deliverables.
  • Ensure operational processes are defined and adopted for the enclave, including access provisioning, change control, incident response coordination, and escalation paths.
  • Drive documentation and audit readiness: policies, SOPs, control narratives, diagrams, and proof of operation (with evidence gathered from both internal teams and the MSP).
  • Coordinate testing, validation, cutover planning, and go-live readiness; ensure post-launch stabilization (“hypercare”) and transition to steady-state operations.
  • Provide clear stakeholder communications and executive-level status reporting, proactively surfacing risks, schedule threats, and mitigation options.
  • Process and track one-time and re-occurring project invoices against the budget. Develop, manage, and maintain the operating cost model for each of the included businesses.


Required Skills & Experience

  • 7+ years of IT project/program management experience, including technical infrastructure and security programs.
  • Demonstrated success managing delivery through third-party vendors / managed service providers, including milestone tracking, SLA/OLA alignment, escalation, and deliverable acceptance.
  • Proven track record delivering complex, cross-functional initiatives involving infrastructure, identity, networking, and cybersecurity.
  • Strong familiarity with Azure and Microsoft security ecosystem, including:
  • Azure core services and governance concepts
  • Entra ID (Azure AD), MFA, Conditional Access, RBAC
  • Microsoft Defender (Endpoint and Cloud)
  • Intune device management and compliance
  • Microsoft Sentinel (SIEM) and Log Analytics
  • Working understanding of compliance-driven delivery and audit readiness (experience with CMMC, NIST 800-171, or similar frameworks strongly preferred).
  • Ability to manage multiple stakeholders and onboard multiple business units with varying requirements and timelines.
  • Strong documentation discipline and ability to drive teams (including vendors) to produce assessor-ready evidence.
  • Excellent communication and leadership skills—comfortable working with executives, engineers, auditors/assessors, and vendor leadership.
  • Tools proficiency: MS Project / Smartsheet / Jira/ SharePoint, Visio (or similar).


Preferred Qualifications

  • Experience supporting environments for CMMC Level 2 readiness and/or NIST SP 800-171 implementation programs.
  • Strong knowledge of secure networking concepts (segmentation, private connectivity, firewalling, zero trust).
  • Experience coordinating third-party assessment readiness activities (mock audits, evidence walkthroughs, remediation plans).
  • Certifications: PMP, CISSP, CISM, Azure certs (AZ-104/AZ-305/SC-100).
Not Specified
Sr. Azure Solutions Architect
✦ New
🏢 AgreeYa Solutions
Salary not disclosed
Dallas, Texas 8 hours ago

Title- Sr. Azure Solutions Architect

Location- Dallas, TX- Onsite

Type- Fulltime

Job Description:

AgreeYa Solutions is hiring a permanent Senior Azure Solutions Architect to anchor our growing Azure practice. This is a high-impact, client-facing role that spans the full engagement lifecycle — from structured cloud readiness assessments and gap analysis through hands-on architecture design and implementation delivery.

The successful candidate will lead our Azure infrastructure engagements across multiple client accounts, beginning with a structured cloud readiness assessment and transitioning into ongoing architecture and delivery responsibilities as the practice grows. This role requires equal comfort operating as a trusted advisor, assessment lead, and delivery architect — adapting to the engagement phase and client context.

Responsibilities

1. Cloud Readiness Assessment & Advisory

Lead structured, evidence-based Azure cloud assessments aligned to Microsoft Cloud Adoption Framework (CAF) and Security-first SDLC principles:

Conduct current-state Azure tenant reviews across all platform domains: tenant topology, management group hierarchy, subscription structure, RBAC model, and policy framework.

Assess identity and access configurations including Microsoft Entra ID, Privileged Identity Management (PIM), Conditional Access policies, and GitHub/Azure DevOps RBAC.

Evaluate security posture using Microsoft Defender for Cloud, Zero Trust alignment, vulnerability management, and network exposure analysis (NSGs, firewall rules, public vs. private endpoints).

Perform regulatory compliance gap assessments against NYDFS Part 500, SOC2 Trust Services Criteria, and other applicable frameworks, producing risk-rated gap registers.

Review IaC and CI/CD maturity including Terraform state management, drift detection, pipeline health (Azure DevOps / GitHub Actions), and non-prod to prod promotion workflows.

Assess monitoring and observability stacks: Azure Monitor, Log Analytics, Application Insights, alert coverage, ITSM integration, and MTTD/MTTR benchmarking.

Evaluate backup and DR configurations, RTO/RPO alignment, recovery runbook completeness, and business continuity readiness.

Review FinOps maturity: cost governance, resource tagging, reserved instance utilization, and savings plan coverage.

Produce executive-ready deliverables: current state reports, gap registers, remediation roadmaps, Target Operating Models (TOM), and C-level presentation decks.

Define objective go-live entry criteria and identify critical blockers that materially increase breach, outage, or compliance exposure.

2. Azure Platform & Infrastructure Architecture

Design and govern Azure platform environments for client workloads with a Terraform-first, pipeline-driven approach:

Define and maintain reference architectures across all stack layers: identity (Entra ID / Auth0 / Okta CIC), application (App Service / AKS), PaaS (Key Vault, Front Door / WAF, API Management), networking, data, storage, and monitoring.

Architect isolated, per-environment landing zones (QA, Stage, Prod) including VNets, subnets, NSGs, Private Endpoints, and firewall rules enforcing least privilege and environment segmentation.

Lead the design of Terraform IaC modules and environment promotion patterns (QA → Stage → Prod), including remote state management, state isolation, and change control governance.

Partner with DevOps engineers to design Azure DevOps multi-stage YAML pipelines for infrastructure and application deployments, including approval gates, rollback strategies, and release tagging.

Architect highly available, secure, scalable, and cost-optimized solutions incorporating backup, disaster recovery, and business continuity strategies.

Define cloud security standards: network segmentation, Zero Trust architecture, WAF and DDoS protection, encryption, and key management.

Set observability standards: App Insights/Log Analytics workspaces, KQL-based alerting, dashboards, Sentinel workbooks, and WAF policy-as-code.

Translate business, compliance, and regulatory requirements (including NYDFS MFA and security mandates) into concrete Azure architecture decisions and technical guardrails.

3. Client Engagement & Delivery Leadership

Operate as a trusted technical advisor and delivery lead across client engagements:

Serve as the primary Azure technical point of contact for clients, including C-suite and senior technical stakeholders.

Lead architecture reviews, technical workshops, and go/no-go decision sessions with structured evidence and documentation.

Translate business and compliance requirements into actionable architecture decisions and phased remediation roadmaps.

Provide Level 2 architectural support during critical delivery windows including rollouts, environment rebuilds, production cutovers, and hypercare periods.

Document architecture decisions, diagrams, runbooks, and ensure these are reflected in implementation and quality gates.

Mentor and guide junior engineers and offshore team members, providing technical direction and code/configuration review.

Support structured MSP onboarding activities including RACI definition, responsibility demarcation, and takeover domain identification.

Required Qualifications

8+ years of hands-on experience designing and implementing solutions on Microsoft Azure, with at least 5 years in an architect or technical lead capacity.

Deep expertise across core Azure services including:

Compute: Azure Web Apps, App Service, Azure Kubernetes Service (AKS), Azure Functions

Networking: VNets, NSGs, Private Endpoints, Azure Front Door, WAF, VPN/ExpressRoute

Integration & API: Azure API Management, Service Bus, Event Grid

Data & Storage: Azure SQL, Cosmos DB, Storage Accounts (Blob, Queue, Table)

Security: Key Vault, Microsoft Defender for Cloud, Sentinel, Azure Policy

Identity: Entra ID (Azure AD), PIM, Conditional Access

Observability: Azure Monitor, Log Analytics, Application Insights, KQL

Proven experience architecting and governing Terraform-based infrastructure in Azure, including module design, remote state backends, environment isolation, and promotion workflows.

Strong background with Azure DevOps (Repos, Pipelines, Artifact Feeds) and CI/CD patterns for both application and infrastructure, including multi-stage YAML and environment approvals.

Demonstrated experience conducting structured cloud assessments, gap analyses, and producing risk-rated findings and remediation roadmaps aligned to frameworks such as Microsoft CAF, CIS, or NIST.

Solid understanding of identity and access management including Entra ID, OAuth/OIDC flows, MFA enforcement, RBAC, and CIAM solutions (Auth0 / Okta CIC).

Working knowledge of regulatory and compliance frameworks applicable to cloud environments, particularly NYDFS Part 500 and SOC2 Trust Services Criteria.

Strong knowledge of cloud security best practices: Zero Trust, network segmentation, WAF and DDoS, encryption, key management, and vulnerability management.

Experience defining monitoring, alerting, and observability strategies using Azure Monitor, Log Analytics, Application Insights, and SIEM tools such as Sentinel.

Excellent communication and documentation skills, with proven ability to produce executive-level presentations, architecture decision records, and go/no-go assessment reports.

Preferred Qualifications

Familiarity with FinOps practices including cost governance, resource tagging strategy, reserved instance analysis, and Azure cost management tooling.

Experience with ITSM integration and tooling including ServiceNow workflows (incident, change, problem management) in cloud-managed services contexts.

Knowledge of additional monitoring platforms such as ScienceLogic or similar enterprise observability tools.

Experience with database migration strategies and tools (Flyway, Liquibase) integrated into CI/CD for Azure SQL or Cosmos DB.

Background working in regulated or audit-focused industries (financial services, healthcare, insurance) with knowledge of evidence requirements for MFA enforcement, penetration testing, and environment parity.

Experience designing and reviewing Target Operating Models (TOM) for Managed Services onboarding and MSP readiness assessments.

Relevant certifications: Azure Solutions Architect Expert, Azure Administrator Associate, Azure DevOps Engineer Expert, or Security Engineer Associate.

Familiarity with Microsoft Cloud Adoption Framework (CAF) landing zone patterns and Well-Architected Framework review methodology.

Not Specified
Security Analyst
✦ New
🏢 Capital Technology Alliance
Salary not disclosed
Tallahassee, Florida 8 hours ago

CTA Job Description

Position Title:

Advanced Information Security Analyst

About Capital Technology Alliance:

At Capital Technology Alliance, we believe changing the future of technology means valuing people. We are committed to building a collaborative, high-performing environment where professionals are empowered to deliver meaningful impact. Our teams work on challenging, often high-visibility initiatives that support mission-critical systems, enterprise modernization efforts, and data-driven decision-making.

CTA is proud to demonstrate a high renewal rate with our employees and contractors. We place a high value on expertise. That's why CTA is committed to paying top rates in the industry and connecting you with positions and flexible engagement options that match your skills and professional goals.

CTA's Flexible Engagement Options:

We believe top talent deserves flexible engagement options. Every CTA opportunity offers flexible engagement models so you can choose the path that fits your goals, lifestyle, and financial preferences. Qualified candidates may choose between:

  • Employee (W2) - Join CTA as a full-time team member with consistent pay, eligibility for benefits, long-term career growth, and the opportunity to build lasting relationships within a respected government and enterprise technology consulting firm.
  • Staff Augmentation (1099 or Corp-to-Corp) – Prefer consulting flexibility? Partner with CTA while maintaining your independence and autonomy, working on high-impact projects that make a difference.

No matter which model you choose, you'll work alongside experienced professionals delivering mission-critical solutions to state, local, and enterprise clients. We focus on long-term partnerships, not transactional placements. Our goal is to provide engagement options that align with your career objectives and preferred working arrangement while ensuring seamless integration with our teams and client environments, supporting your success every step of the way. At CTA, your expertise drives impact and your career path is in your hands.

Position Overview:

Capital Technology Alliance is seeking an experienced Advanced Information Security Analyst for a full-time, on-site engagement in Tallahassee, Florida. This role is within a large state agency's Office of Information Technology, supporting a high-security environment with critical compliance requirements. The analyst will lead technical security project implementations, manage security tools and platforms, and collaborate with cross-functional teams to maintain a strong and compliant security posture.

Scope of Work:

The Advanced Information Security Analyst is responsible for leading the technical implementation of security projects, focusing on system hardening, network security, and identity management. The role requires hands-on expertise in firewalls, IDS/IPS, encryption, and secure Microsoft configurations, as well as conducting vulnerability assessments and developing remediation strategies. The analyst will manage security tools, support threat detection and incident response, and ensure integration of security platforms. Compliance with CJIS and applicable state regulations is critical, as is working with GRC teams to address audit gaps. The role also requires reengineering security processes for efficiency and compliance, and staying informed on emerging threats and technologies.

Key Responsibilities:

Project Implementation

  • Lead the technical implementation of security projects, focusing on system hardening, network security, encryption tools, vulnerability management, security monitoring, and IAM systems within a Microsoft and Azure environment.
  • Collaborate with cross-functional teams to deploy security solutions meeting project requirements.
  • Ensure timely delivery of security projects aligned to scope, timeline, and budget.

Technical Expertise

  • Provide hands-on expertise in firewalls, IDS/IPS, encryption, endpoint protection, and secure configuration of Microsoft environments.
  • Implement secure system architecture and networking solutions within Microsoft Azure.
  • Conduct vulnerability assessments and develop remediation strategies for continuous improvement.

Security Tools and Platforms

  • Configure, deploy, and manage SIEM systems, Microsoft Azure Security Center, and endpoint security solutions.
  • Ensure integration of security platforms across IT systems and support threat detection and incident response.

Incident Response

  • Design and maintain incident response procedures tailored to a high-security environment.
  • Conduct root cause analysis and implement appropriate remediation measures.

Security Compliance

  • Ensure adherence to CJIS, state regulations, and other relevant security compliance standards.
  • Work closely with GRC teams to ensure organizational compliance with state and federal security regulations.
  • Assist with security audits and address identified gaps.

Documentation and Training

  • Develop and maintain up-to-date documentation of cybersecurity solutions and processes.
  • Provide training to IT staff on security protocols and contribute to security awareness initiatives.

Process Reengineering

  • Design, implement, and optimize security processes to enhance operational efficiency and mitigate risks.
  • Reengineer existing security processes to improve system integrity and ensure alignment with evolving technology and regulatory standards.

Collaboration and Support

  • Work with IT operations and development teams to integrate security into systems and processes.
  • Provide troubleshooting and support for cybersecurity-related issues in Microsoft and Azure environments.
  • Stay current on emerging cybersecurity threats and technologies.

Required Qualifications:

Bachelor's degree in Computer Science, Information Systems, or a related field from an accredited institution is required. Relevant experience may be substituted for education on a year-for-year basis.

  • 5+ years of server or network administration experience.
  • 3+ years of information security administration experience in an enterprise environment with 1,000 or more users.
  • 2+ years of experience managing technical implementations.
  • 3+ years of SIEM experience.
  • 3+ years of vulnerability management experience.
  • Knowledge of security issues, techniques, and implications across all existing computer platforms.
  • Experience maintaining and supporting 3rd party antivirus applications.

Preferred Qualifications:

  • Experience working with IDS/IPS systems.
  • Experience using Office 365 Data Loss Prevention (DLP).
  • Experience preparing status reports and providing management briefings.
  • Knowledge of IT standards in a criminal justice or high-security environment.
  • Experience with Microsoft security technologies such as Azure Security Center, Microsoft Defender, and Active Directory.
  • Familiarity with CJIS security standards and applicable state regulations.

Job Specific Knowledge, Skills, and Abilities:

  • Strong analytical and problem-solving skills in a complex, high-security IT environment.
  • Ability to lead security projects and collaborate effectively with cross-functional teams.
  • Deep familiarity with Microsoft Azure security architecture and enterprise security frameworks.
  • Excellent written and verbal communication skills for documentation, reporting, and training.
  • Ability to balance multiple security initiatives simultaneously while maintaining compliance standards.
  • Commitment to staying current with cybersecurity best practices and emerging threat landscapes.

Location/Work Terms:

This is a full-time, on-site position located in Tallahassee, Florida. The expected schedule is 40 hours per week. Equipment and office space will be provided by the client.

Travel Requirements:

No travel is required. This is a local, on-site engagement. Travel expenses are not reimbursable under this engagement.

Not Specified
Lead HPC Architect Cybersecurity - High Performance & Computational Data Ecosystem
🏢 Icahn School of Medicine at Mount Sinai
Salary not disclosed
New York, NY 6 days ago

Position Summary:

The Scientific Computing and Data group at the Icahn School of Medicine at Mount Sinai partners with scientists to accelerate scientific discovery. To achieve these aims, we support a cutting-edge high-performance computing and data ecosystem along with MD/PhD-level support for researchers. The group is composed of a high-performance computing team, a clinical data warehouse team and a data services team.


The Lead HPC Architect, Cybersecurity, High Performance Computational and Data Ecosystem, is responsible for designing, implementing, and managing the cybersecurity infrastructure and technical operations of Scientific Computing’s computational and data science ecosystem. This ecosystem includes a 25,000+ core and 40+ petabyte usable high-performance computing (HPC) systems, clinical research databases, and a software development infrastructure for local and national projects. The HPC system is the fastest in the world at any academic biomedical center (Top 500 list).


To meet Sinai’s scientific and clinical goals, the Lead brings a strategic, tactical and customer-focused vision to evolve the ecosystem to be continually more resilient, secure, scalable and productive for basic and translational biomedical research. The Lead combines deep technical expertise in cybersecurity, HPC systems, storage, networking, and software infrastructure with a strong focus on service, collaboration, and strategic planning for researchers and clinicians throughout the organization and beyond. The Lead is an expert troubleshooter, productive partner and leader of projects. The lead will work with stakeholders to make sure the HPC infrastructure is in compliance with governmental funding agency requirements and to promote efficient resource utilizations for researchers


This position reports to the Director for HPC and Data Ecosystem in Scientific Computing and Data.


Key Responsibilities:


HPC Cybersecurity & System Administration:

  • Design, implement, and manage all cybersecurity operations within the HPC environment, ensuring alignment with industry standards (NIST, ISO, GDPR, HIPAA, CMMC, NYC Cyber Command, etc.).
  • Implement best practices for data security, including but not limited to encryption (at rest, in transit, and in use), audit logging, access control, authentication control, configuration managements, secure enclaves, and confidential computing.
  • Perform full-spectrum HPC system administration: installation, monitoring, maintenance, usage reporting, troubleshooting, backup and performance tuning across HPC applications, web service, database, job scheduler, networking, storage, computes, and hardware to optimize workload efficiency.
  • Lead resolution of complex cybersecurity and system issues; provide mentorship and technical guidance to team members.
  • Ensure that all designs and implementations meet cybersecurity, performance, scalability, and reliability goals. Ensure that the design and operation of the HPC ecosystem is productive for research.
  • Lead the integration of HPC resources with laboratory equipment for data ingestion aligned with all regulatory such as genomic sequencers, microscopy, clinical system etc.
  • Develop, review and maintain security policies, risk assessments, and compliance documentation accurately and efficiently.
  • Collaborate with institutional IT, compliance, and research teams to ensure all regulatory, Sinai Policy and operational alignment.
  • Design and implement hybrid and cloud-integrated HPC solutions using on-premise and public cloud resources.
  • Partner with other peers regionally, nationally and internationally to discover, propose and deploy a world-class research infrastructure for Mount Sinai.
  • Stay current with emerging HPC, cloud, and cybersecurity technologies to keep the organization’s infrastructure up-to-date.
  • Work collaboratively, effectively and productively with other team members within the group and across Mount Sinai.
  • Provide after-hours support as needed.
  • Perform other duties as assigned or requested.


Requirements:

  • Bachelor’s degree in computer science, engineering or another scientific field. Master's or PhD preferred.
  • 10 years of progressive HPC system administration experience with Enterprise Linux releases including RedHat/CentOS/Rocky Systems, and batch cluster environment.
  • Experience with all aspects of high-throughput HPC including schedulers (LSF or Slurm), networking (Infiniband/Gigabit Ethernet), parallel file systems and storage, configuration management systems (xCAT, Puppet and/or Ansible), etc.
  • Proficient in cybersecurity processes, posture, regulations, approaches, protocols, firewalls, data protection in a regulated environment (e.g. finance, healthcare).
  • In-depth knowledge HIPAA, NIST, FISMA, GDPR and related compliance standards, with prove experience building and maintaining compliant HPC system
  • Experience with secure enclaves and confidential computing.
  • Proven ability to provide mentorship and technical leadership to team members.
  • Proven ability to lead complex projects to completion in collaborative, interdisciplinary settings with minimum guidance.
  • Excellent analytical ability and troubleshooting skills.
  • Excellent communication, documentation, collaboration and interpersonal skills. Must be a team player and customer focused.
  • Scripting and programming experience.


Preferred Experience

  • Proficient with cloud services, orchestration tools, openshift/Kubernetes cost optimization and hybrid HPC architectures.
  • Experience with Azure, AWS or Google cloud services.
  • Experience with LSF job scheduler and GPFS Spectrum Scale.
  • Experience in a healthcare environment.
  • Experience in a research environment is highly preferred.
  • Experience with software that enables privacy-preserving linking of PHI.
  • Experience with Globus data transfer.
  • Experience with Web service, SAP HANA, Oracle, SQL, MariaDB and other database technologies.


Strength through Unity and Inclusion


The Mount Sinai Health System is committed to fostering an environment where everyone can contribute to excellence. We share a common dedication to delivering outstanding patient care. When you join us, you become part of Mount Sinai’s unparalleled legacy of achievement, education, and innovation as we work together to transform healthcare. We encourage all team members to actively participate in creating a culture that ensures fair access to opportunities, promotes inclusive practices, and supports the success of every individual.


At Mount Sinai, our leaders are committed to fostering a workplace where all employees feel valued, respected, and empowered to grow. We strive to create an environment where collaboration, fairness, and continuous learning drive positive change, improving the well-being of our staff, patients, and organization. Our leaders are expected to challenge outdated practices, promote a culture of respect, and work toward meaningful improvements that enhance patient care and workplace experiences. We are dedicated to building a supportive and welcoming environment where everyone has the opportunity to thrive and advance professionally. Explore this opportunity and be part of the next chapter in our history.


About the Mount Sinai Health System:


Mount Sinai Health System is one of the largest academic medical systems in the New York metro area, with more than 48,000 employees working across eight hospitals, more than 400 outpatient practices, more than 300 labs, a school of nursing, and a leading school of medicine and graduate education. Mount Sinai advances health for all people, everywhere, by taking on the most complex health care challenges of our time — discovering and applying new scientific learning and knowledge; developing safer, more effective treatments; educating the next generation of medical leaders and innovators; and supporting local communities by delivering high-quality care to all who need it. Through the integration of its hospitals, labs, and schools, Mount Sinai offers comprehensive health care solutions from birth through geriatrics, leveraging innovative approaches such as artificial intelligence and informatics while keeping patients’ medical and emotional needs at the center of all treatment. The Health System includes more than 9,000 primary and specialty care physicians; 13 joint-venture outpatient surgery centers throughout the five boroughs of New York City, Westchester, Long Island, and Florida; and more than 30 affiliated community health centers. We are consistently ranked by U.S. News & World Report's Best Hospitals, receiving high "Honor Roll" status.


Equal Opportunity Employer

The Mount Sinai Health System is an equal opportunity employer, complying with all applicable federal civil rights laws. We do not discriminate, exclude, or treat individuals differently based on race, color, national origin, age, religion, disability, sex, sexual orientation, gender, veteran status, or any other characteristic protected by law. We are deeply committed to fostering an environment where all faculty, staff, students, trainees, patients, visitors, and the communities we serve feel respected and supported. Our goal is to create a healthcare and learning institution that actively works to remove barriers, address challenges, and promote fairness in all aspects of our organization.

Not Specified
Cyber Security Analyst
✦ New
🏢 Veritis Group Inc
Salary not disclosed
Plano, TX 2 hours ago

Role: GRC Engineer (OneTrust / NIST) - Mid

Location: Plano, Texas (Hybrid)

Duration: Long Term Contract


Description

We are seeking a hands‑on GRC Engineer & Risk Analytics professional who will implement and scale a NIST‑aligned control and risk framework in OneTrust while also conducting targeted risk and control assessments to validate design and operating effectiveness. Reporting to the TFSB CISO, you will connect process, data, and automation so department leaders can see—and reduce—risk in near‑real time through role‑based dashboards and scorecards. You’ll partner with Security Engineering, IT, Audit, and business control owners to streamline assessments, evidence collection, POA&M tracking, and reporting.


Focus split: approximately 70% OneTrust configuration, integrations, data modeling, and dashboards; approximately 30% targeted assessments and facilitation.


Module ownership on Day 1: OneTrust Integrated Risk Management (IRM) and Third‑Party Risk Management (TPRM).


What you’ll be doing:

Model the control framework in OneTrust: map NIST CSF and NIST 800‑53 control families, control objectives, test procedures, evidence types, and ownership.

Configure assessment templates (application/infrastructure, inherent/residual risk, third‑party due diligence, control attestations) with automated workflows, notifications, and approvals.

Stand up a POA&M lifecycle (defect creation, risk acceptance, due dates, escalations, verifications) and connect to tickets for remediation traceability.

Build role‑based dashboards and departmental scorecards that surface KRIs/KPIs (e.g., control coverage, overdue actions, risk heatmaps, SLA adherence).

Establish data taxonomy and metadata (assets, business processes, data classifications) aligned to controls and obligations to support consistent analytics.

Own the end‑to‑end third‑party risk workflow in OneTrust: inherent risk profiling, tiering, questionnaire selection, and residual risk calculation.

Design and maintain due‑diligence questionnaires and control attestations; streamline evidence collection and follow‑ups via automated reminders and SLAs.

Track remediation and POA&Ms for vendors; manage risk acceptances, exceptions, and expirations with clear ownership and timelines.

Publish vendor scorecards and portfolio‑level insights for department leaders; highlight concentration risk, critical suppliers, and overdue actions.

Integrate TPRM data with IRM objects (assets, processes, controls) to show end‑to‑end exposure and dependencies.

Integrate OneTrust with CMDB, Risk reporting platforms to auto‑enrich risks, controls, and assets.

Define data quality rules and reconciliation checks; implement connectors or API jobs to keep dashboards near‑real‑time and reduce manual evidence collection.

Partner with Analytics to publish curated Power BI datasets for executives and technical teams.

Conduct spot assessments and control testing to validate design and operating effectiveness and calibrate automation.

Translate FFIEC/GLBA/SOX and policy requirements into measurable controls and department‑owned obligations; document rationales and residual risk.

Facilitate remediation planning with control owners; track POA&Ms and risk acceptances to closure with clear RACI and deadlines.

Create playbooks, test scripts, and user guides; run enablement sessions for control owners and assessors to drive adoption.


What you’ll deliver in the first 6–12 months:

A fully modeled NIST-aligned control catalog in OneTrust IRM and TPRM, complete with owners, testing procedures, evidence, and mapped obligations.

3–5 data integrations operational (for instance, CMDB, Archer, Posture Management) enabling automated evidence and asset-to-control mapping.

Departmental scorecards along with an executive dashboard (showing trendlines, heatmaps, top risks, overdue actions, and risk reduction by department).

Enhanced assessment throughput with a reduced cycle time (targeting a 30–40% improvement from baseline).

Improved on-time completion of POA&M (targeting an increase of 20–30%) with a decrease in repeat findings through structured root-cause identification.

Published and operational governance framework artifacts (including a governance calendar, defined roles, training materials, and standard operating procedures).


Requirements:

• 5+ years hands‑on experience implementing/administering GRC platforms (OneTrust preferred; Archer/ServiceNow GRC acceptable with commitment to OneTrust ramp‑up).

• Working knowledge of NIST CSF and NIST 800‑53 and how to translate obligations into measurable controls and tests.

• Experience configuring questionnaires, workflows, object models, APIs, and building role‑based dashboards.

• Data skills in Power BI, SQL, or Python for data prep/transformations that feed analytics.

• Ability to tell the risk story—translate technical signal into business‑relevant insights for department leaders.

• Bachelor’s degree or equivalent practical experience.


Added bonus if you have:

• OneTrust GRC/IRM certifications; CRISC, CISA, or CISSP.

• Prior integrations with ServiceNow, Jira, SailPoint/IDP, Qualys/Tenable, or cloud platforms (AWS/Azure).

• Experience setting up control attestation/evidence automation and KRI/KPI scorecards across business units.

• Background in financial services or familiarity with FFIEC/GLBA/SOX supervisory expectations.

Not Specified
Firewall Administrator
🏢 AGE Solutions
Salary not disclosed
New Cumberland, PA 3 days ago
About Us

AGE Solutions is a premier technology and professional services company, providing in-depth consulting, advanced technology solutions, and essential services throughout the U.S. government, defense, and intelligence sectors. Prioritizing innovation and client-focused solutions, we assist major agencies in addressing intricate issues and ensuring a more secure future.

We are looking for a Firewall Administrator to join our team in support of a program with our DoD customer.


Responsibilities Include:



  • Plan and deploy Enclave Boundary Defense systems and programs including firewall, proxy server, cloud services and other devices and applications.
  • Plan and deploy De-Militarized Zones (DMZs) for each managed firewall as required.
  • Provide onsite and remote support to boundary security and programs, which include Checkpoint Firewalls, Aviatrix Product Suite, various types of cloud security, security controls and any other platforms.
  • Participate in the development, testing, and implementation of firewalls and proxy servers
  • Verify devices are configured in accordance with DISA Security Technical Implementation Guides (STIGs).
  • Product lifecycle management and upgrades to include installation of hotfixes, patches, and any other features to improve product performance.
  • Evaluate and recommend firewall solutions for technology refreshes.
  • Deploy and sustain new firewall solutions as prescribed by the government.
  • Coordinate with Tier III support teams and government customers throughout design, planning, implementation, and sustainment phases.
  • Research and provide quotes and documents necessary to renew licenses and equipment maintenance for firewall, proxy and cloud services.
  • Maintain all current applicable firewall, proxy appliance and cloud services policies to include DoD. Participate in the development, implementation, and maintenance of a secure and effective means of remote access for employees who are working offsite.
  • Develop and deliver briefings to the upper-level management as required on a variety of subjects relating to Enclave Boundary Defense.
  • Provide firewall troubleshooting (24x7x365 on-call support).
  • Review and resolve automated firewall log issues as to threats or possible compromises.
  • Provide daily maintenance and support for all Enterprise Boundary Defense systems including monitoring system and log files.
  • Review and resolve automated firewall log issues as to threats or possible compromises.
  • Notify appropriate personnel of possible threats or systems vulnerabilities.
  • Respond appropriately to reported or identified incidents in accordance with the Incident response plan.
  • CSP Security Posture Assessment: Conduct comprehensive security assessments of existing and planned CSP deployments, identifying vulnerabilities and recommending remediation actions aligned with industry best practices and relevant security frameworks (e.g., NIST CSF, CIS and Benchmarks).
  • Security Architecture Documentation, Design and Implementation: Document, design, implement, and maintain secure network architectures for CSP environments, including secure connectivity, network segmentation, intrusion detection/prevention systems (IDS/IPS), and data loss prevention (DLP) solutions. Maintaining comprehensive documentation of security controls, configurations, and processes within the CSP environment.
  • Cloud Security Operations and Monitoring: Provide continuous security monitoring and incident response capabilities for CSP environments, including log analysis, threat intelligence integration, vulnerability management, and incident response planning and execution.
  • Audit, Compliance and Governance: Ensure compliance with relevant security regulations and standards (e.g., FedRAMP, FISMA, NIST) for CSP environments, including documentation, reporting, and audit support. Cooperating fully with authorized Government audits and assessments of the CSP environment, providing timely access to documentation, systems, and personnel. Follow DoD Cloud Computing Security Requirements Guide (SRG) and other applicable DoD issuances and instructions.
  • Training and Knowledge Transfer: Provide training and knowledge transfer to Government personnel on best practices for securing CSP environments, covering topics such as cloud security fundamentals, secure configuration, threat detection and response, and incident management.

Required Skills, Qualifications and Experience:


Minimum Experience:



  • Five (5) years of relevant experience to include the following:

    • Working knowledge of Firewalls.
    • Working knowledge and understanding of industry standard network environments to include firewall and security hardware/software.
    • Working knowledge of Information Assurance Best Practices.
    • In depth knowledge of LAN and WAN operations.
    • Knowledge of industry standard Incident Ticket Tracking systems for inputting incident tickets and creating work orders.
    • Comprehensive knowledge of DOD and DLA security regulations, guidelines, and policies, to include, but not limited to, IA standards.
    • Working knowledge of the installation, configuration and day-to- day sustainment of network equipment, to include but not limited to firewalls and other network appliances.



Security Clearance:



  • Sensitivity Level: Must possess IT-I Critical Sensitive security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC) at time of proposal submission.
  • Clearance: DoD Secret

Certifications:



  • IAT Level II certification or higher (one of the following): CCNA Security, CySA+, GICSP, GSEC, Security+CE, CND, SSCP, CASP+ CE CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP.
  • Computing Environment (one of the following): CCSA, CCSE or CCSM

Location:



  • Candidates must reside within a commutable distance of one of the following locations in order to work onsite full time: Columbus, OH; Fort Belvoir, VA; or New Cumberland, PA.

Preferred Qualifications:



  • One of the following: AWS Cloud Practitioner, Microsoft Certified: Azure Fundamentals, or Comp TIA Cloud+

Work Environment and Physical Demand:



  • Must be able to lift up 50 lbs.

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.



  • 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  • Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  • 401(k) with Match: We match 3% of your contributions with immediate vesting.
  • Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  • Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  • Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  • Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  • Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  • Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.

At AGE, you'll do work that matters, supported by a company that delivers for its people.

Not Specified
Manager of Information Security
🏢 Granite Telecommunications
Salary not disclosed
Quincy, MA 3 days ago

Granite delivers advanced communications and technology solutions to businesses and government agencies throughout the United States and Canada. We provide exceptional customized service with an emphasis on reliability and outstanding customer support and our customers include over 85 of the Fortune 100. Granite has over $1.85 Billion in revenue with more than 2,100 employees and is headquartered in Quincy, MA. Our mission is to be the leading telecommunications company wherever we offer services as well as provide an environment where the value of each individual is recognized and where each person has the opportunity to further their growth and achieve success.


Granite has been recognized by the Boston Business Journal as one of the "Healthiest Companies" in Massachusetts for the past 15 consecutive years.


Our offices have onsite fully equipped state of the art gyms for employees at zero cost.


Granite's philanthropy is unparalleled with over $300 million in donations to organizations such as Dana Farber Cancer Institute, The ALS Foundation and the Alzheimer's Association to name a few.


We have been consistently rated a "Fastest Growing Company" by Inc. Magazine.


Granite was named to Forbes List of America's Best Employers 2022, 2023 and 2024.


Granite was recently named One of Forbes Best Employers for Diversity.


Our company's insurance package includes health, dental, vision, life, disability coverage, 401K retirement with company match, childcare benefits, tuition assistance, and more.


If you are a highly motivated individual who wants to grow your career with a fast paced and progressive company, Granite has countless opportunities for you.


EOE/M/F/Vets/Disabled

General Summary of Position:


The Manager of Information Security leads Granite's enterprise security program, ensuring the protection of corporate systems, applications, cloud platforms, and data across the entire business. This role drives the strategy, implementation, and continuous improvement of security policies, controls, and processes while enabling secure operations across IT, Engineering, Operations, Legal, and customerfacing teams. It oversees vulnerability management, cloud security (GCP and AWS), identity and access management, application security, incident response, and thirdparty risk, ensuring security is embedded into technology decisions and business initiatives. The position also maintains focused support for governmentrelated compliance activities, such as NISTbased requirements and limited ATO documentation, representing a smaller but important portion of the role. Overall, the Senior Manager provides crossfunctional leadership to strengthen Granite's security posture, reduce risk, and support the organization's operational and strategic goals



Duties and Responsibilities:



  • Oversee and manage Granite's enterprise wide Information Security Program, ensuring
    protection of corporate systems, data, applications, cloud environments, and business
    operations across all departments (IT, Engineering, Legal, Ops, Customer facing
    teams).
  • Lead the development, implementation, and continuous improvement of corporate
    security policies, standards, procedures, and supporting governance documents.
  • Direct vulnerability management activities across infrastructure, cloud, and
    applications; coordinate remediation with engineering, DevOps, and operations teams;
    validate fixes through scanning and ongoing monitoring.
  • Oversee cloud security for GCP and AWS, ensuring secure configuration, access
    control, and alignment with best practices.
  • Drive secure architecture reviews, application security requirements, and SDLC
    security integration for internal products.
  • Partner with Engineering, Infrastructure, DevOps, and Network teams to evaluate
    system changes, cloud migrations, firewall updates, and new deployments to ensure
    security requirements and risk mitigations are properly addressed.
  • Lead incident response activities-coordinate triage, communicate with stakeholders,
    review root causes, and ensure corrective actions and preventative measures are
    implemented.
  • Manage enterprise identity and secrets programs, including MFA requirements, SSO
    implementation, service account lifecycle, least privilege enforcement, and secure
    credential rotation.
  • Guide third party risk management, review vendor documentation, determine required
    evidence levels, and assess security impact of new or ongoing vendors.
  • Provide security guidance and support for business processes, system enhancements,
    corporate initiatives, new integrations, and technology transformations across the
    organization.
  • Lead recurring enterprise security meetings to align IT, Engineering, Legal, Audit, and
    business leaders on priorities, risks, and remediation activities.
  • Ensure proper data handling practices across the business, including the identification
    and removal of sensitive or regulated data from email, local drives, Teams, and other
    systems.
  • Support corporate continuity and resilience activities, including business impact
    analysis, response planning, and readiness validation.
  • * Provide accurate, timely responses to security questionnaires, proposals, and customer
    inquiries across business units; contribute security content for RFPs, audits, and partner
    assessments.
  • Maintain compliance for federal BSS/GBSS systems under NIST SP 800 53 / 800 171
    and GSA requirements; update SSPs; and support ATO assessments as needed.
  • Provide federal agencies (e.g., GSA, DARPA) with required security documentation,
    system diagrams, and responses when requested.
  • Perform other duties as required
  • Obtain/retain a government security clearance as may be required to perform the duties
    of the position

Required Qualifications:



  • Bachelor's degree in Computer Science, Information Systems, Information Assurance,
    or equivalent experience.
  • Eligibility to obtain and maintain Public Trust (Tier 2) or other federal security
    clearances.
  • Handson experience implementing NIST SP 80053, NIST SP 800171, SOC 2, PCIDSS, RMF, and FISMA Moderate controls in enterprise environments.
  • Demonstrated experience with SSP writing, ATO packages, security assessments, and
    continuous monitoring activities.
  • Experience with cloud security in Google Cloud Platform (GCP) and Amazon Web
    Services (AWS). Familiarity with application security best practices (OWASP, SDLC integration,
  • SAST/DAST scanning workflows).
  • Ability to interpret and communicate security requirements to engineering, legal, and
    operations teams.
  • Experience supporting vendor risk reviews, questionnaire responses, and assessment of
    thirdparty security materials.
  • Experience with security controls in a converged infrastructure/virtual machine
    environment
  • Experience developing information system security plans, policies, and procedures for
    Local Area Network (LAN) information systems and wide area network (WAN)
    information systems
  • Strong crossteam leadership, communication, and documentation skills.
Not Specified
Team Lead Firewall Administrator
🏢 AGE Solutions
Salary not disclosed
Fort Belvoir, VA 2 days ago
About Us

AGE Solutions is a premier technology and professional services company, providing in-depth consulting, advanced technology solutions, and essential services throughout the U.S. government, defense, and intelligence sectors. Prioritizing innovation and client-focused solutions, we assist major agencies in addressing intricate issues and ensuring a more secure future.

We are looking for a Team Lead Firewall Administrator to join our team in support of a program with a DoD customer.


Responsibilities Include:



  • Provide overall supervision for vendor employees to include, but not limited to, planning, and managing the project professionally, ensuring that work is scheduled properly to obtain maximum use of resources; ensuring that accurate and timely reports are provided.
  • Resolve problems, allocate resources, manage personnel, and monitor operation performance taking direction from the government to ensure complete satisfaction.
  • Under general supervision, develop the requirements of a product from inception to conclusion.
  • Develop required specifications for simple to moderately complex problems.
  • Coordinate with the Vendor PM, TPOCs, and government user representatives to ensure accurate solutions and user satisfaction on technical matters.
  • Provide input to the PM on the schedule, weekly and monthly reports, transition plan, 8570/8140 reports, IPR briefings, and kick-off meeting.
  • Plan and deploy Enclave Boundary Defense systems and programs including firewall, proxy server, cloud services and other devices and applications.
  • Plan and deploy De-Militarized Zones (DMZs) for each managed firewall as required.
  • Provide onsite and remote support to boundary security and programs, which include Checkpoint Firewalls, Aviatrix Product Suite, various types of cloud security, security controls and any other platforms.
  • Participate in the development, testing, and implementation of firewalls and proxy servers
  • Verify devices are configured in accordance with DISA Security Technical Implementation Guides (STIGs).
  • Product lifecycle management and upgrades to include installation of hotfixes, patches, and any other features to improve product performance.
  • Evaluate and recommend firewall solutions for technology refreshes.
  • Deploy and sustain new firewall solutions as prescribed by the government.
  • Coordinate with Tier III support teams and government customers throughout design, planning, implementation, and sustainment phases.
  • Research and provide quotes and documents necessary to renew licenses and equipment maintenance for firewall, proxy and cloud services.
  • Maintain all current applicable firewall, proxy appliance and cloud services policies to include DoD. Participate in the development, implementation, and maintenance of a secure and effective means of remote access for employees who are working offsite.
  • Develop and deliver briefings to the upper-level management as required on a variety of subjects relating to Enclave Boundary Defense.
  • Provide firewall troubleshooting (24x7x365 on-call support).
  • Review and resolve automated firewall log issues as to threats or possible compromises.
  • Provide daily maintenance and support for all Enterprise Boundary Defense systems including monitoring system and log files.
  • Review and resolve automated firewall log issues as to threats or possible compromises.
  • Notify appropriate personnel of possible threats or systems vulnerabilities.
  • Respond appropriately to reported or identified incidents in accordance with the Incident response plan.
  • CSP Security Posture Assessment:Conduct comprehensive security assessments of existing and planned CSP deployments, identifying vulnerabilities and recommending remediation actions aligned with industry best practices and relevant security frameworks (e.g., NIST CSF, CIS and Benchmarks).
  • Security Architecture Documentation, Design and Implementation:Document, design, implement, and maintain secure network architectures for CSP environments, including secure connectivity, network segmentation, intrusion detection/prevention systems (IDS/IPS), and data loss prevention (DLP) solutions. Maintaining comprehensive documentation of security controls, configurations, and processes within the CSP environment.
  • Cloud Security Operations and Monitoring:Provide continuous security monitoring and incident response capabilities for CSP environments, including log analysis, threat intelligence integration, vulnerability management, and incident response planning and execution.
  • Audit, Compliance and Governance:Ensure compliance with relevant security regulations and standards (e.g., FedRAMP, FISMA, NIST) for CSP environments, including documentation, reporting, and audit support. Cooperating fully with authorized Government audits and assessments of the CSP environment, providing timely access to documentation, systems, and personnel. Follow DoD Cloud Computing Security Requirements Guide (SRG) and other applicable DoD issuances and instructions.
  • Training and Knowledge Transfer:Provide training and knowledge transfer to Government personnel on best practices for securing CSP environments, covering topics such as cloud security fundamentals, secure configuration, threat detection and response, and incident management.

Required Skills, Qualifications, and Experience:



  • Experience:

    • Five (5) years relevant experience to include:

      • Working knowledge and understanding of CheckPoint firewalls to include versions R80.40 and R81.10 and industry standard network environments to include firewall and security hardware/software. Must have knowledge and understanding of Information Assurance Best Practices.
      • In depth knowledge of LAN and WAN operations, understanding of how to use Incident Ticket Tracking systems for inputting incident tickets and creating work orders along with a comprehensive knowledge of DOD and DLA security regulations, guidelines, and policies to include, but not limited to, IA standards.
      • Hands-on experience with the installation, configuration, and day-to-day sustainment of network equipment, to include but not limited to firewalls, proxy servers, cloud services and other network appliances.


    • Security Clearance:

      • Must possess IT-I Critical Sensitive security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC).
      • Clearance Required: DoD Secret


    • Certifications:

      • IAT Level II certification or higher (must have one of the following): CCNA Security, CySA+, GICSP, GSEC, Security+CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP.
      • Computing Environment (must have one of the following): CCSA, CCSE or CCSM


    • Location:

      • Candidates must reside within a commutable distance of one of the following locations in order to work onsite full time: Columbus, OH; Fort Belvoir, VA; or New Cumberland, PA.





Preferred Qualifications:



  • One of the following: AWS Cloud Practitioner, Microsoft Certified: Azure Fundamentals, or Comp TIA Cloud+

Work Environment and Physical Demand:



  • Must be able to lift up 50 lbs.

Compensation: $90,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.



  • 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  • Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  • 401(k) with Match: We match 3% of your contributions with immediate vesting.
  • Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  • Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  • Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  • Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  • Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  • Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.

At AGE, you'll do work that matters, supported by a company that delivers for its people.

Not Specified
Cyber Cloud Assessment Engineer, Sr.
🏢 AGE Solutions
Salary not disclosed
Fort Meade, MD 2 days ago
About Us

AGE Solutions is a premier technology and professional services company, providing in-depth consulting, advanced technology solutions, and essential services throughout the U.S. government, defense, and intelligence sectors. Prioritizing innovation and client-focused solutions, we assist major agencies in addressing intricate issues and ensuring a more secure future.

AGE Solutions is looking for a Senior Cyber Cloud Assessment Engineer to join our team in support of an upcoming cybersecurity risk management and assessment program with our DoD customer. As a Team Lead, you will be responsible for performing analysis, conducting independent validations of assessments, and Continuous Monitoring (ConMon) for authorized CSPs and CSOs.


Individuals in this role must be available to work full-time on-site at Ft. Meade, MD.


Responsibilities Include:



  • Conduct cybersecurity assessments and validations of Cloud Service Offerings (CSOs) in support of the Department of Defense (DoD) Provisional Authorization (PA) process.
  • Evaluate Cloud Service Provider (CSP) documentation packages following government guidance and procedures, including key artifacts such as the Cloud Architecture Diagram, System Security Plan (SSP), SSP Addendum, Readiness Assessment Report (RAR), System Architecture, Security Assessment Plan (SAP), Security Assessment Report (SAR), and associated Plans of Action & Milestones (POA&Ms).
  • Review, analyze, and process additional documents including Change Requests, Extension Requests, Deviation Requests, Whitelist Requests, Corrective Action Plans, templates, process guide approvals, and continuous monitoring (ConMon) artifacts for existing Provisional Authorizations.
  • Prepare and deliver up to 30 Cloud Security Assessment Packages annually, each including validated cybersecurity controls, certifier recommendations, and a statement of residual risk.
  • Participate in technical kickoff meetings and review preliminary documentation to assess a CSP's readiness posture.
  • Analyze and provide detailed feedback on CSP submissions such as the RAR, SAP, SSP, and architectural diagrams.
  • Assess and document the operational impact of authorizations, changes, and vulnerabilities on the CSP environment.
  • Develop Cloud Security Assessment Packages in accordance with established guidelines, including the SAR, POA&M, and any Deviation Requests.
  • Draft Authorization Recommendation Memoranda outlining CSO compliance with DoD cybersecurity controls, residual risks, and technical findings.
  • Prepare formal DoD Provisional Authorization memoranda, detailing authorization length, CSO boundary, services provided, operating conditions, DoD usage considerations, and follow-on activities.
  • Validate CSO controls within eMASS or other government-provided Governance, Risk, and Compliance (GRC) tools; ensure accurate tracking in the Mission Status Report (MSR).
  • Review and verify the Customer Responsibility Matrix (CRM), ensuring proper control inheritance is reflected in eMASS/GRC systems.
  • Upload authorization conditions as system-level POA&Ms in eMASS and monitor their resolution.
  • Organize and associate all received documentation with applicable security controls within eMASS.
  • Maintain and update the DoD Cloud Process Guide, including all checklists, templates, forms, and guidance documents.
  • Assist in developing internal requirements and how-to guides for assessors conducting CSP validations.
  • Document and refine assessment procedures and validation best practices to align with DoDI 8510.01 and the DoD Cloud Computing Security Requirements Guide (SRG).
  • Contribute to the ongoing development and annual updates of the DoD Cloud Assessment Process Guides as requested by the Government.

Requirements:



  • Bachelor's degree (IT-related field preferred)
  • Eight (8) years of overall experience in cybersecurity or network security position
  • Have an active DoD Top Secret clearance with SCI eligibility
  • DoD 8570 IAM/IA Technical (IAT) Level III certification
  • Familiarity with security controls for Azure, AWS, and assorted cloud platforms
  • Solid understanding of DoD Risk Management Framework (RMF), DoDI 8510.01, and DoD Cloud Computing Security Requirements Guide (SRG)
  • Familiarity with security controls for Azure, AWS, and assorted cloud platforms
  • Hands-on experience with eMASS or other government-provided GRC tools
  • Familiarity with cloud security documentation, including SSPs, SARs, RARs, and POA&Ms
  • Ability to analyze complex cloud architectures and provide accurate risk assessments
  • Strong technical writing and communication skills to produce security assessment reports and formal recommendations
  • Applicants must reside within a commutable distance of Ft. Meade, MD in order to work onsite full time.

Compensation: $110,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.



  • 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  • Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  • 401(k) with Match: We match 3% of your contributions with immediate vesting.
  • Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  • Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  • Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  • Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  • Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  • Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.

At AGE, you'll do work that matters, supported by a company that delivers for its people.

Not Specified
jobs by JobLookup
✓ All jobs loaded