Cyber Security Project Engineer

KDA Consulting is a Disabled Veteran, Woman-Owned, Certified Disadvantaged Small Business, comprised of a diverse team of professionals driven to tackle the demanding National Defense and Intelligence challenges through IT solutions. We emphasize teamwork and focus on achieving goals to complete deliverables efficiently, on-time, and under budget. We are currently seeking a SME Cyber Security Project Engineer to join our team. Primary Job Duties
Manage security assessment, security compliance, change management, and continuous monitoring activities across five cloud service providers through the Sponsor's office.
Assess cloud security technologies for security gaps and weaknesses according to industry standards. Analyze security scan findings and perform risk analysis on security scan findings. Review cloud security body of evidence packages for completeness and accuracy. Collaborate with other internal components and security peers to determine security and potential weaknesses of cloud infrastructure and cloud services. Advise leadership on cloud security services. Analyze system alerts to determine if a security weakness exists and document risk mitigation procedures. Sustain and evolve the Sponsor's standard operating procedures to meet Program Objectives.
Facilitate technical exchange meetings (TEMs) with cloud service providers to review cloud service architectures. Required skills and demonstrated experience
Demonstrated experience facilitating Technical Exchange Meeting (TEM) with cloud service providers to review cloud service architectures. Demonstrated experience maintaining assessment and authorization packages across multiple services or systems in accordance with FIPS-199, NIST 800-53, and CNSS 1253 requirements.
Demonstrated experience designing, implementing, assessing or reviewing systems that utilize cloud technology with either Amazon Web Services, Oracle Cloud, Google Cloud, IBM Cloud, or Microsoft Azure cloud architecture.
Demonstrated experience utilizing or reviewing cross domain technology and common architecture designs.
Demonstrated experience consulting project teams on system architecture and security posture.
Demonstrated experience with continuous monitoring requirements to include scan analysis for critical or high findings with common scan tools such as Rapid 7, Nessus or Qualys.
Demonstrated experience creating, monitoring, or closing system or service Plans Actions and Milestone items (POA&Ms).
Demonstrated experience utilizing compliance tools to track assessment and authorization activities such as Xacta 360, Service Now, or RSA Archer.
Demonstrated experience with the common control provider concept within the NIST Risk Management Framework.
Demonstrated experience with security control assessments (SCAs) to include working with SCAs and preparing security packages for SCAs. Highly Desired skills and demonstrated experience
Demonstrated experience using the Sponsors or similar element assessment and authorizing process.
Demonstrated experience creating or reviewing A&A body of evidence documentation in a cloud security environment.
Demonstrated experience identifying, implementing, or reviewing appropriate information security controls.
Demonstrated experience working in Xacta 360. Travel
Local Travel is anticipated for this contract, on a situational as-needed basis, local to the primary place of work performance.
Temporary Duty (TDY) travel is anticipated within the Continental United States (CONUS).

Job Requirements
Active TS/SCI + Full Scope Poly U.S. Government Security is required
Bachelor's Degree Sixteen (16) years of relevant professional work experience
Ability to maintain discretion and confidentiality
Strong interpersonal skills, especially the ability to network and establish professional relationships
Ability to prioritize, demonstrated strong organizational skills, and ability to meet or exceed deadlines

Physical Demands: Position will require frequent sitting, standing, and/or mobility within an office setting. Employee must be able to use hands to complete work at a workstation/computer, be able to reach, type and manipulate with hands, fingers, and arms; lift and/or move up to 20 pounds; talk, see and hear. Work Environment: Work is performed on client site in a professional office environment with moderate stress and noise levels. Position requires employee to effectively use a computer, potentially for long periods of time, and to accommodate potentially frequent interruptions. Candidate should be both customer-focused and present a team approach to overall work. Schedule: Business core hours are Monday through Friday, from 8:30 a.m. to 5:00 p.m. ET. Standard work hours may vary for this position based upon contract requirements. Position will be located onsite at a customer facility. Americans with Disabilities Act (ADA): KDA is committed to the full inclusion of all qualified individuals. As part of this commitment, KDA will ensure that persons with disabilities are provided reasonable accommodations in the hiring process. We encourage qualified individuals with disabilities to apply. If a reasonable accommodation is needed to participate in the job application or interview process or to perform essential job functions, please contact our HR team by email . For persons who are deaf, hard of hearing, deafblind, or deaf-disabled, KDA will provide an American Sign Language (ASL) interpreter where needed as a reasonable accommodation for the hiring processes. EEOC: KDA is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.