Cybersecurity Policy Administrator AWS

Introduction
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.

You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.

Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.

Your Role and Responsibilities
This is a managed service provider (MSP) for Army IT systems and we support enterprise applications owners in migrating their systems into Amazon AWS and also provide sustainment services to support their applications. This position is for a cybersecurity policy administrator role to support a full range of cybersecurity services that Army provides to all our customers.

• Serve as overall subject matter expert on Cybersecurity Policy Administration.
• Work between technical and policy teams to implement, maintain, and monitor technical security configuration controls, including: STIGs, SRGs, and other industry security hardening guidance.
• Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO, and security control inheritance capabilities.
• Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements.
• Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2.
• Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required.
• Update and/or assist the hosted system's personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository; i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
• Assist in the preparation of network infrastructure specifications or designs incorporating required information security features.
• Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies, and best industry practice.
• Interact with the Army CSSP, C5ISR, and customer ISSMs on a regular basis.
• This role requires DoD Secret level clearance or higher

Required Technical and Professional Expertise
Clearance: *** This position requires a Secret Security clearance or higher (US Citizenship is required) ***

Required Certifications:

• Security
• DoD 8570.01-M IAM level II - *both Baseline certification as defined in DoD Instruction 8570.01-M. *

Required Experience:

• Mid to senior level Cybersecurity Policy Administrator experience in a cloud environment
• Experience effectively managing multiple large-scale projects
• Experience automating routine administrative tasks desired
• Understanding of network, storage, server, and application technologies
• Working knowledge of DoD STIGs, and IA Vulnerability Management (IAVM.

Preferred Technical and Professional Expertise

• Certified Ethical Hacker (CEH), or similar.
• Knowledge of cloud security concepts (AWS, Azure, or GCP).
• Familiarity with scripting languages (Python, Ruby, etc.).
• Knowledge of container security (Docker, Kubernetes).