About GDH
At GDH, we believe in the power of people and the importance of caring. Our culture statement, “We care about people,” isn't just a tagline – it's the core of everything we do. GDH is a premier staffing and talent solutions company dedicated to helping businesses find the best talent and assisting job seekers in finding their dream jobs.
Who We Are
GDH, founded in 2001, has grown into a leader in providing staffing solutions across various industries. We specialize in IT across several sectors, connecting top talent with leading enterprises. As a Best of Staffing firm recognized for excellence in client, employee, talent, and women's services, we pride ourselves on our commitment to quality and service.
Benefits Of Working For GDH
- Professional Development
- Competitive pay
- Full health insurance
- 401k Plan
- Holiday Pay
- Gym Membership Reimbursement
- Weekly Paycheck & Direct Deposit
- & More!
Job Description:
GDH is hiring a Sr DIS SecOps to work with our client, an innovative defense, space, and intelligence solutions provider. We are currently seeking a highly skilled and motivated Cloud Security Engineer for a remote position, offering the opportunity to play a pivotal role in our client's Data Integration Service program. This role is ideal for individuals passionate about leveraging their expertise in cloud security to support essential government agencies across a diverse range of sectors including intelligence, space, cyber, defense, civilian, health, and state and local markets. The successful candidate will be instrumental in defining and implementing robust security measures, ensuring the integrity, confidentiality, and availability of data within cloud environments. This position is a testament to our commitment to excellence and innovation in solving the most daunting challenges facing our customers.
Responsibilities
- Define Information System Categorization (High, Moderate, or Low) by identifying the information types and data classification that the system will store, process, and/or transmit.
- Manage the AWS Cloud Security Score Card for the FAPC Data Integration Service offering, including daily insights from AWS Security Hub, AWS GuardDuty, AWS Health, and AWS Config.
- Work closely with Platform and Vendor teams to address and mitigate the root cause of ongoing non-compliance issues.
- Review, investigate, and mitigate non-compliant controls, including supporting Terraform Infrastructure as Code (IaC) changes.
- Complete System Security Plan in accordance with system categorization, detailing all required security controls and their implementation status.
- Support Security Control Assessment (SCA) by providing technical and non-technical review of the information system(s) controls and contextualize assessment results for risk management tracking.
- Support Network and Information Technology Risk (NIRT) penetration testing as per specific control requirements.
- Assemble Authorization to Operate (ATO) documentation for review and approval, ensuring the accuracy of ATO processes in support of project objectives.
Qualifications
- Bachelor’s Degree in a relevant field with a minimum of 5 years; experience; an additional 4 years of experience may be accepted in lieu of the degree.
- Experience in the Federal or Government security domain is essential.
- AWS Security Specialty Certification is required.
- Hold one or more leading Security certifications (i.e., CISSP, CISM, CISA, CRISC).
- Minimum of 5 years of hands-on enterprise-level implementation experience in AWS.
- Proven experience in SecOps implementation.
- Working knowledge of source version control, build/release tools and methodologies, and NIST Security practices.
- Familiarity with CI/CD pipelines and experience with Terraform IaC coding is necessary.
- Must be able to obtain and maintain the required agency clearance (Public Trust).
- Preferred qualifications include AWS Professional Level certifications and an active Public Trust clearance.