New 
Azure Security SME
 Quadrant, Inc. | |
 United States, Maryland, Fort Meade | |
 Sep 24, 2024 | |
|
Azure Security Subject Matter Expert (SME)
Ft. Meade MUST Azure Security Subject Matter Expert (SME) Active Secret or TS Relevant security certifications, such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or Microsoft Certified: Azure Security Engineer Associate 7+ years of experience in cybersecurity, with at least 3 years focused on cloud security in Azure. Must have strong background in cloud security, compliance with DoD regulations, and hands-on experience with Azure. Demonstrated experience securing cloud environments in Azure, including the design and implementation of security controls in a classified DoD or FISMA High environment Experience working in a federal or DoD environment, with a strong understanding of DoD, FISMA, NIST, and RMF compliance requirements. Proven track record of managing security in complex, multi-cloud environments. Expertise in Azure security tools and services, such as Azure Security Center, Azure Sentinel, and Azure Policy. Strong knowledge of cloud security frameworks, identity and access management (IAM), and encryption techniques. Experience with security automation and integration within CI/CD pipelines. Strong analytical and problem-solving skills, with the ability to assess risks and implement effective mitigation strategies. Excellent communication skills, with the ability to convey complex security concepts to technical and non-technical stakeholders. Bachelor's degree in Computer Science, Information Technology, or a related field. Equivalent work experience may be considered. DUTIES Azure Security SME to support the Defense Information Systems Agency (DISA) in implementing cloud infrastructure for a software modernization project. The primary focus will be on securing and accrediting Azure FISMA High cloud DevSecOps environments. The ideal candidate will have a strong background in cloud security, compliance with DoD regulations, and hands-on experience with Azure. Design, implement, and manage security controls for cloud infrastructure, with a primary focus on Azure, ensuring alignment with DoD security requirements and best practices. Develop and enforce security policies, procedures, and standards to protect cloud-based assets and data. Conduct security assessments and vulnerability analysis of cloud environments, identifying and mitigating risks. Implement identity and access management (IAM) controls, including multi-factor authentication (MFA), role-based access control (RBAC), and least privilege principles. Monitor and respond to security incidents, ensuring timely resolution and documentation of all activities. Collaborate with cloud architects, DevOps teams, and developers to integrate security into the CI/CD pipeline and infrastructure as code (IaC) practices. Ensure compliance with federal regulations, including FISMA, NIST, FIPS, and RMF, by developing and maintaining security documentation and artifacts. Support future project phases involving AWS by designing and implementing security measures across both Azure and AWS environments. Stay current with emerging threats, vulnerabilities, and security trends, applying this knowledge to enhance the security posture of cloud environments. Provide guidance and training to technical teams on cloud security best practices and compliance requirements. Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability. | |