• Provides cloud security support to help develop, implement, configure, administer, and report on cloud security capabilities, technologies, tools, risks, vulnerabilities, events, and incidents to include implemented enterprise security controls• Ensure security activities, procedures, practices, capabilities, technologies, tools, and security controls comply with federal, DoD, and Army policies, standards, and guidelines• Work with enterprise compliance organizations to align with ARMY enterprise security architecture framework and security policies and procedures • Provides support to designs, test, and implementation of secure operating systems, networks, and database products• Conducts risk assessments and provides recommendations for application design• Manages Tenable.sc for AWS IL 4/5/6• Performs Burp scans for Azure and AWS Web applications

• Reviews violations of computer security procedures to eliminate violations• Develop, execute, and maintain full-scope Computer Network Defense (CND) and Incident Response (IR) operations that monitor for, detect, protect against, and respond to cyber exploitation and attack efforts against all of the organization’s systems, networks, and users• Detect cyber intrusions, while reducing false positives to 1% and while not allowing false negatives in the methodologies that are implemented• Ensure that all alerts are monitored, interpreted, analyzed, and investigated to ensure that network intrusion attempts are detected and prevented from expanding the scope of exploitation beyond the initial detected intrusion point• Respond to all classified message incidents (CMI…aka “Data Spill”), serving as the CMI action officer and completing all tasks defined in the CMI standard response procedure• Conduct Cyber Threat Analysis• Provide cyber threat risk assessments and real time threat mitigation and countermeasure options, as well as course of action planning and execution• Plans, coordinates, and implements an organization's computer information security measures to safeguard information in computer files against accidental or unauthorized modification, destruction, or disclosure.

• Provides on-site technical and administrative Security Assessment and Authorization (A&A) and Continuous Monitoring (CM) support for the client enterprise wide under the NIST Risk Management Framework (RMF)• Implements security engineering principles to review security requirements, verify implementation, and provide mitigation recommendations throughout the system life cycle to facilitate secure systems for A&A and Continuous Monitoring support• Provides security requirements analysis of systems and cloud architectures and designs• Identifies technical gaps and solution recommendations for services, acquisition, development, migration, implementation, and monitoring• Explains security controls/requirements and guidance to the System Owners and System Teams and recommending implementation strategies• Identifies vulnerabilities and recommending mitigation alternatives for POA&M items• Reviews security test results to identify weaknesses, technical flaws, and vulnerabilities• Reviews SLAs for compliance to requirements• Recommends technical process improvements for the A&A process• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks• Utilizes Splunk and Kibana for auditing and reporting• Perform vulnerability scans utilizing ACAS, AppDetective, and Burp Suite

•Coordinates with program management and customer counterparts to ensure compliance with national IA/IS security requirements. •Provides Information System Security Officer (ISSO) support for classified and unclassified sensitive systems as Applicable. •Assists the Director of Information Assurance (IA) in developing and maintaining the enterprise classified Information Systems (IS) Security Program for the protection of classified information, systems, and networks. Drafts applicable security documentation and provides assistance in the DIACAP Certification and Accreditation (C&A) or the NIST Assess & Authorized (A&A) RMF process for new and expiring classified and unclassified sensitive systems and Architectures.•Acts as a mentor for junior members on the IA team.•Assists in the development of classified information systems security policies, plans, and procedures and serves as a key reviewer of unclassified systems information security policies and plans. •Performs IS related incident investigations to include policy violation, insider threat activity, and/or inappropriate employee behavior on clients classified and unclassified IT infrastructure.•Coordinates the design, implementation and evaluation of all phases of highly complex information security solutions and programs.•Assists in the overall development, implementation, and oversight of the information assurance (IA) program.•Participates in the security engineering, validation testing of system configuration/hardening, and assessment of classified information systems (IS). •Supports the Certification and Accreditation (C&A) or the NIST Assess & Authorize (A&A) RMF process and develops system security plans (SSPs) under guidance of NIST SP 800s,NISPOM, DIACAP, ICD 503, or replacement guidance as released.

• Participates as a member of integrated government/contractor teams providing information assurance/information systems security (INFOSEC) support to organizational IA/CND activities for DOD organizations • Performs risk assessments and security testing as part of a security engineering team • Ensure new and existing products conform to information security policies, standards, and best practices • Supports project team in using the following tools, ACAS, eMASS, SCAP, and DISA STIGs. Provides consulting support to the Authorization Officer in the system authorization process

• Supporting the DHA in life cycle security from inception of the program through accreditation to obsolescence. Monitoring the implementation of, and compliance with, C&A standards within DoD to ensure uniform application of the standards and consistency in security of accredited DoD information systems.• Performing Cyber Security Information Technology activities including: risk assessments, annual reviews, ATOs and Branch Service Accreditation.• Reviewing and providing technical documentation required for the application, system, network, and site certification and accreditation process.• Developing and maintaining C&A Plans of Action and Milestones (POA&M). • Using eMASS for POAMs, DIACAP/RMF packages, remediation, mitigations, risk assessments, and security analysis to support system authorizations.• Identifying and assessing security requirements and deficiencies in applications, systems, and local and wide area networks (LANs and WANs).• Supporting the team in using the following tools and analyzing results in these IA activities: AppDetective, WebInspect, Fortify and the NESSUS scanner.• Coordinate with the IV&V team on remediation of cybersecurity issues as a result of Security Test and Evaluation (ST&E) and scanning.• Providing support to DISA Security Readiness Reviews (SRR) as needed.

• Participates as a member of integrated government/contractor teams providing information assurance/information systems security (INFOSEC) support to organizational IA/CND activities for DOD organizations • Performs risk assessments and security testing as part of a security engineering team • Ensure new and existing products conform to information security policies, standards, and best practices • Supports project team in using the following tools, ACAS, eMASS, SCAP, and DISA STIGs. Provides consulting support to the Authorization Officer in the system authorization process