Google Cloud Platform (GCP) Security SME

We are currently conducting a search for a Google Cloud Platform (GCP) Security SME to support migration and hosting of enterprise solutions in the cloud (XaaS) at the United States Postal Service. The candidate will have expertise in Security Architecture, Solution Design, Risk Management, System Certification & Accreditation (C&A) processes; Information Assurance (IA) processes; achieving system ATOs, and continuous monitoring, all in support of IaaS, PaaS, and SaaS implementations. The successful candidate will experience an unparalleled large-scale enterprise environment with over 800 Information Technology systems, processing billions of dollars in annual revenue and supporting a diverse user base spread across the entire US. Join the team to scale your career to the next level.

Responsibilities:

• The successful candidate will support the mission of the Cybersecurity Risk organization by supporting enterprise application migration, hosting, and security posture assessment in GCP.
• The candidate will lead cyber risk management planning including reporting and tracking.
• Support transition of large-scale on-prem solutions to the GCP cloud environment.
• Provide guidance on policies and procedures related to cloud transition.
• The candidate will drive the review and certification of cloud hosted information technology systems following the USPS CISO policies and procedures (modeled based on NIST RMF).
• The candidate will manage action items, work to resolve issues, and identify and document system risks and vulnerabilities.
• Providing input to and develop, write, edit and submit documentation in support of the project deliverables.
• Work closely with the system teams and program/project managers as well as interfacing with CISO and CIO stakeholders as needed.
• Lead the development of risk management by creating plans, procedures, protocols, and evaluation measures and ensuring there are desired levels of enterprise-wide IA/IS.

Qualifications:

• Bachelor's degree in Information Technology or a relevant Cybersecurity field, and 10+ years of overall experience.
• 2+ years of experience with security architecture, design, risk management in Google Cloud Platform.
• 5+ years of experience working as a Risk, Information Assurance, or Information Systems Security Analyst.
• Strong experience supporting enterprise application migration to cloud environments (IaaS, PaaS, or SaaS).
• Strong knowledge of the NIST Risk Management Framework (RMF) and security controls is required.
• The candidate must have experience with identifying and assessing risks within Cloud environments, including the unique risks associated with SaaS, PaaS, and IaaS implementations.
• Experience with successful risk management of Google Cloud Platform application migration/development is a must.
• This candidate must understand the risk management process, risk mitigation, and risk tracking.
• Hands on experience creating ATO packages, and continuous monitoring compliance in a large-scale enterprise environment is required.
• Experience working with leading edge technologies and innovative risk compliance and mitigation processes (automated monitoring, automated ATOs, etc.).
• Must have strong communication skills, both oral and written, with excellent interpersonal, team and organization skills.
• Demonstrable experience with Security Operation tools inclusive of products from SPLUNK, FireEye, Looking Glass, Intel, Endgame, StealthWatch, RSA, and Tanium

****Candidates must be able to obtain a Postal Sensitive Clearance (US Citizenship or Green Card required). Additionally, candidates must not have traveled outside of the USA for a combined period not to exceed 6 months within the last 5 years.***

Apply online here:  https://niksoft.applicantpro.com/jobs/1577429.html

EOE M/F/Disability/Vet