Security Specialist

Job not on LinkedIn

31 minutes ago

Apply Now

Receive Emails with Similar Jobs

Shee Atiká

WebsiteLinkedInAll Job Openings

Social Impact

Shee Atiká is a company that aims to ensure future value for its shareholders through empowering business leaders to promote sustainable economic growth while honoring their heritage and being responsible stewards of their lands and indigenous culture. Rooted in a rich cultural heritage, Shee Atiká is committed to enhancing the prosperity of their culture through providing benefits, resources, education, and job opportunities. The company operates on a unique business model that creates meaningful value for customers and partners, promoting cultural prosperity and shareholder benefit.

201 - 500 employees

🌍 Social Impact

📋 Description

• Develop, implement, and maintain cybersecurity architecture for cloud-based and hybrid environments in Oracle Cloud Infrastructure (OCI), delivering robust security postures aligned with government cybersecurity frameworks (e.g., DoD RMF, NIST SP 800-53, and organizational policies). • Conduct vulnerability scans, security assessments, and penetration testing of cloud and on-premises resources, deliver actionable reports, and ensure timely remediation of identified risks and findings. • Oversee and support the continuous monitoring and incident response process within OCI, utilizing native and third-party cloud security, SIEM, and audit tools to detect, investigate, and resolve security events. • Support efforts to obtain and maintain Authority to Operate (ATO) for all assigned environments, including preparation and submission of security documentation, POA&Ms, risk assessments, and audit responses. • Drive the implementation and sustainment of security controls such as multi-factor authentication (MFA), encryption at-rest/in-transit, firewall rules, identity and access management (IAM) policies, Least Privilege enforcement, and boundary protections. • Ensure secure configuration baselines are maintained in accordance with STIGs, CIS benchmarks, and DHA-specific guidelines; perform and document regular reviews and updates. • Collaborate closely with systems engineers, application teams, and database administrators to ensure DevSecOps practices, secure deployment pipelines, application security reviews, and vulnerability management are fully integrated. • Serve as the primary responder for cybersecurity incidents, coordinating containment, eradication, and lessons-learned activities; document responses in accordance with incident response plans and government requirements. • Monitor cybersecurity regulatory compliance and support audits and inspections; proactively identify gaps and drive continuous process improvement in technical and procedural security controls. • Assist with the creation and update cybersecurity knowledge resources (e.g., SOPs, security architecture diagrams, training modules, lessons learned, SharePoint resources) to ensure optimal knowledge transfer and mission continuity. • Provide regular status briefings, risk summaries, and expert consultation to government leadership, program managers, and other stakeholders.

🎯 Requirements

• Candidate must be a U.S. Citizen • Candidate must have an active DoD Secret Clearance • Candidate must have a bachelor's degree • Candidate must have an active Security+ CE (or equivalent) • Candidate must have at least 4 years of experience in the following: • Working in cybersecurity roles supporting government, DoD, DHA, or federal contracts. • Cloud-native security in Oracle Cloud Infrastructure or similar major IaaS providers. • Strong understanding of Secure Cloud Architecture, Identity and Access Management, encryption strategies, and vulnerability management within OCI. • Demonstrated proficiency with DoD RMF, NIST SP 800-53, FedRAMP, FISMA, and experience preparing and sustaining ATO packages. • Security monitoring and SIEM solutions (e.g., Oracle Cloud Guard, Splunk) and incident response in cloud and hybrid environments. • Hands-on technical skills in secure configuration of compute, network, database, and application resource. • Automation/scripting to support compliance (e.g., with Python, PowerShell, Terraform, or Ansible). • Excellent oral and written communication skills for producing clear security documentation/artifacts and delivering briefings to technical and non-technical audiences.

🏖️ Benefits

• Competitive compensation • Outstanding benefits • Challenging work assignments • Opportunities for advancement/career growth