M+E Technology Job Board
IT Security Analyst
Oracle
Primary responsibilities of this role will include:
Lead contact with regard to compliance operations within the Oracle Cloud Infrastructure;
Supports the maintenance of FedRAMP, DISA/DoD SRG and agency authorizations, drafting and compiling documentation packages, engages in audits and conducts analysis of results on a continuous basis;
Evaluates regulatory compliance requirements and engages with a variety of cross functional teams;
Key team member of engineering design and development of government cloud based systems;
Evaluates and provides reasonable assurance that risk management, control, and governance systems are functioning as intended and will enable the organization’s objectives and goals to be met;
Reports risk management issues and internal controls deficiencies identified directly to the Governance, Risk and Compliance Program and provide recommendations for improving the organization’s operations, in terms of both efficient and effective performance;
Evaluates information security and associated risk exposures;
Preferred Skills/Qualifications:
A background in engaging in day-to-day FISMA/FedRAMP compliance operations, supporting continuous monitoring, assessment & authorization for U.S Federal Government and/or Department of Defense systems.
A strong working knowledge of FISMA, FedRAMP, NIST, and FIPS standards.
Strong working knowledge of DoD Cloud Computing SRG, RMF for DoD IT, and similar skills and experience.
Strong working knowledge of Cloud IT processes and Cloud IT infrastructure
Networking fundamentals
7+ years relevant experience
CISSP, CISA, CISM, OSCP, CEH or other DOD Directives 8570.1 Level 2 and Level 3 certifications
Experience using or analyzing results from vulnerability management tools such as Nessus, Qualys, Fortify or similar.
Oracle
Primary responsibilities of this role will include:
Lead contact with regard to compliance operations within the Oracle Cloud Infrastructure;
Supports the maintenance of FedRAMP, DISA/DoD SRG and agency authorizations, drafting and compiling documentation packages, engages in audits and conducts analysis of results on a continuous basis;
Evaluates regulatory compliance requirements and engages with a variety of cross functional teams;
Key team member of engineering design and development of government cloud based systems;
Evaluates and provides reasonable assurance that risk management, control, and governance systems are functioning as intended and will enable the organization’s objectives and goals to be met;
Reports risk management issues and internal controls deficiencies identified directly to the Governance, Risk and Compliance Program and provide recommendations for improving the organization’s operations, in terms of both efficient and effective performance;
Evaluates information security and associated risk exposures;
Preferred Skills/Qualifications:
A background in engaging in day-to-day FISMA/FedRAMP compliance operations, supporting continuous monitoring, assessment & authorization for U.S Federal Government and/or Department of Defense systems.
A strong working knowledge of FISMA, FedRAMP, NIST, and FIPS standards.
Strong working knowledge of DoD Cloud Computing SRG, RMF for DoD IT, and similar skills and experience.
Strong working knowledge of Cloud IT processes and Cloud IT infrastructure
Networking fundamentals
7+ years relevant experience
CISSP, CISA, CISM, OSCP, CEH or other DOD Directives 8570.1 Level 2 and Level 3 certifications
Experience using or analyzing results from vulnerability management tools such as Nessus, Qualys, Fortify or similar.