Posted today
Secret
Mid Level Career (5+ yrs experience)
Unspecified
IT - Security
Scott AFB, IL (On-Site/Office)
The Cloud Enterprise Cybersecurity Engineer will lead cybersecurity engineering and operational support to Mobility Air Forces (MAF) C2 cloud-based systems as they migrate to cloud environments and advance modernization initiatives. This role focuses on sustaining and enhancing cybersecurity posture across IL-5 and IL-6 operational and test environments, including supporting compliance, vulnerability management, and risk mitigation.
Key Responsibilities
· Provide cybersecurity engineering support for MAF C2 IL-5 and IL-6 cloud operational and test environments.
· Assess cloud-based cybersecurity software, tools, processes, and technologies supporting MAF C2 modernization initiatives and provide analysis to the OL-2 C3MMS Cybersecurity Lead.
· Collaborate with OL-2 stakeholders to integrate cybersecurity considerations into modernization initiatives.
· Track and manage cloud Security Technical Implementation Guide (STIG) compliance, including coordination with Enterprise Security Services (ESS) using the STIG Manager tool.
· Facilitate coordination with PMOs and development teams to assess new DISA quarterly STIG updates and ensure timely remediation of findings.
· Review STIG findings and support development of Plans of Action and Milestones (POA&Ms) for unresolved issues.
· Monitor cloud ACAS scan results and coordinate with PMOs, developers, ESS, and ISSMs to ensure timely patching of cloud environments.
· Support and guide development teams in establishing and maintaining effective cloud patch management processes.
· Lead cloud POA&M processes and workflows, ensuring risks are tracked, mitigated, and reported consistently.
Requirements
Bachelor’s degree in an IT related field, or direct equivalent experience
· Active SECRET clearance
· Prior experience supporting DoD IL-5 and IL-6 cloud environments.
· Demonstrated experience evaluating cybersecurity tools, technologies, and processes in cloud environments.
· Substantial experience assessing, reviewing, and maintaining DISA STIG compliance.
· Experience reviewing ACAS scan reports and coordinating vulnerability remediation.
One of the following certifications: CompTIA Security+ CE, CySA+, CASP+, CGRC, CISM
· One of the following certifications: Certified Cloud Security Professional (CCSP), AWS Certified Security – Specialty
· Strong background supporting MAF C2 systems, including associated commercial off-the-shelf (COTS) solutions and infrastructure.
Key Responsibilities
· Provide cybersecurity engineering support for MAF C2 IL-5 and IL-6 cloud operational and test environments.
· Assess cloud-based cybersecurity software, tools, processes, and technologies supporting MAF C2 modernization initiatives and provide analysis to the OL-2 C3MMS Cybersecurity Lead.
· Collaborate with OL-2 stakeholders to integrate cybersecurity considerations into modernization initiatives.
· Track and manage cloud Security Technical Implementation Guide (STIG) compliance, including coordination with Enterprise Security Services (ESS) using the STIG Manager tool.
· Facilitate coordination with PMOs and development teams to assess new DISA quarterly STIG updates and ensure timely remediation of findings.
· Review STIG findings and support development of Plans of Action and Milestones (POA&Ms) for unresolved issues.
· Monitor cloud ACAS scan results and coordinate with PMOs, developers, ESS, and ISSMs to ensure timely patching of cloud environments.
· Support and guide development teams in establishing and maintaining effective cloud patch management processes.
· Lead cloud POA&M processes and workflows, ensuring risks are tracked, mitigated, and reported consistently.
Requirements
Bachelor’s degree in an IT related field, or direct equivalent experience
· Active SECRET clearance
· Prior experience supporting DoD IL-5 and IL-6 cloud environments.
· Demonstrated experience evaluating cybersecurity tools, technologies, and processes in cloud environments.
· Substantial experience assessing, reviewing, and maintaining DISA STIG compliance.
· Experience reviewing ACAS scan reports and coordinating vulnerability remediation.
One of the following certifications: CompTIA Security+ CE, CySA+, CASP+, CGRC, CISM
· One of the following certifications: Certified Cloud Security Professional (CCSP), AWS Certified Security – Specialty
· Strong background supporting MAF C2 systems, including associated commercial off-the-shelf (COTS) solutions and infrastructure.
group id: 10105424
Accelerating IT transformation in the public sector
