Position Description and Job Duties:

We are looking for a Cloud Security Engineer specializing in vulnerability management. They will collaborate closely with our customers, internal teams, and ISSOs/ISSMs to ensure that security best practices are integrated into the build and maintenance processes. This position aids the development, modernization, and migration in support of a government multi-cloud environment with 30+ customer tenants and growing. Aside from technical qualifications, the applicant should have effective communication skills, both written and verbal. The applicant must have security engineering experience and extensive cloud knowledge and experience with integration, system analysis or programming experience, including developing cloud systems requirements and design specification. A passion for performance, strong desire for quality conformance, and attention to detail are prerequisites for this position.

• Security and Compliance:
  • Implement and enforce security policies and practices in line with standards and regulatory requirements
  • Conduct regular security assessments and vulnerability scans of Windows and Linux systems
  • Apply STIGs to ensure compliance with security protocols
  • Perform regular audits to assess security posture and compliance
  • Use Nessus to conduct vulnerability scans and address identified issues
  • Collaborate with security team to monitor and respond to security incidents
• Collaboration and Support:
  • Work with customer to understand their requirements and provide expert guidance on security compliance and vulnerability remediation
  • Provide technical support and troubleshooting for related issues
  • Document processes, configurations, and best practices for customers

Required Skills:

• US Citizenship required - personnel with Permanent Resident (Green Cards) or Work Visas are not eligible for this position
• Ability to obtain a DHS Public Trust clearance (called Entry on Duty)
• Expertise with security practices such as STIGs and remediating system vulnerabilities
• Proficiency using Nessus for vulnerability scanning and remediation
• Experience conducting security audits and addressing compliance issues
• Familiarity with managing systems in the cloud and infrastructure-as-code tools, such as Terraform and Ansible

Preferred Skills:

• Relevant Certification such as Security+, CISSP, CASP, or CySA
• 5+ years of experience in System Engineering within cloud environment (AWS and/or Azure)
• 5+ years of working on cloud platforms (AWS and Azure)

*VEVRAA FEDERAL CONTRACTOR*

EEO:MSM provides equal employment opportunities to all employees and applicants in allMSMfacilitieswithout regardto race,color,religiouscreed,sex,nationalorigin,ancestry, citizenship status, pregnancy, disability, age, military or disabled veteran status, marital status, gender or gender identity, medical condition, genetic information, or sexual orientation in accordance with applicable federal, state and local laws.