Cloud Application Security Administrator - Active TS/SCI required

Clearance Level
Top Secret/SCI
Category
Cloud
Location
Washington, District of Columbia

REQ#: RQ127471

Travel Required: None
Public Trust: None
Requisition Type: Regular

Support a high profile Federal Government program, responsible for supporting application and cloud system security administration and sustainment and performing application and cloud system administration.

As an Application Security Administrator you will maintain our customer’s cloud applications across multiple cloud providers. This includes application sustainment, capacity, resiliency, and recovery activities.

• Operate, sustain, and monitor the cloud application encryption solution, including:

  • Account access

  • Certificate expiration

  • Encryption solution connections

  • Data encryption methodology

  • Encryption key rotation and lifecycle

  • Encryption backups

  • Deallocation of encryption material

• Conduct proactive monitoring of cloud services to ensure Service Level Agreements (SLAs) are met, including:

  • Interfacing with cloud service providers (CSPs) on system changes and incidents, such as client-specific configurations and customization, and bug fixes, that prevent clients from using a cloud service.

  • Troubleshooting deployment processes and remediating hosting, performance, and maintenance tasks and issues

  • Providing second and third tier support, to include after normal business hour planned and unplanned outages as well as problem resolution (off-hours initial response time must be no greater than one hour from contact)

  • Tracking, reviewing, assessing, and coordinating SaaS/PaaS/IaaS software, firmware, and hardware updates, upgrades, and patches o Capturing, analyzing, and reporting on SaaS/PaaS/IaaS services performance metrics including, but not limited to, compute, storage, and license utilization

  • Coordinating and communicating with impacted parties

• Conduct backups, recovery, and exports of configuration settings and system and user data.

• Coordinate with CSP to comply with EOP-defined incident reporting and response with regard to data spills, i.e., the unauthorized transfer of classified or Controlled Unclassified information, for timely data sanitization / remediation, including remediation of backup copies and forensics.

• Conduct security monitoring of cloud services and coordinate with security and incident response analysts to investigate and address security issues, including:

  • Ensure logs can be processed automatically by Government security tools o Develop secure solutions to threats to EOP clouds, vet solutions through the Government and implement them in a timely manner to protect government systems and data against newly identified or emerging threats

  • Enable auditing and reporting to the enterprise SIEM tool

  • Assist with auditing access and propose solutions to system components that are not ingestible by the SIEM, require manual monitoring, or are associated with ongoing investigations

  • Manage cloud administration to ensure compliance with FedRAMP certification guidance and report changes to the customer. In performing these support services, you will:

  • Work directly with the Government, vendors, and cloud providers to assist with FedRAMP certification

  • Coordinate with information assurance / application security to ensure cloud applications / services obtain and maintain authority to operate (ATO) status

Minimum Qualifications and Experience:

  • BA/BS Degree in Information Technology, Cybersecurity, or a related field (6 years additional experience may be substituted for a degree)

  • 4 to 7 years of related experience

  • Experience performing cloud application administration • Experience administering cloud application authentication systems

  • Excellent verbal and written communication skills

  • DoD 8570 IAT III Certification or equivalent (e.g., CASP+ CE, CCNP-Security, CISA, CISSP (or associate), GCED, GCIH) and CSSP Analyst compliant (CISSP or CASP, and CEH) https://public.cyber.mil/cw/cwmp/dod-approved-8570-baseline-certifications

  • Active TS/SCI clearance

RQ127471 


About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.