CrawlJobs Logo
Chickasaw Nation Industries, Inc (CNI) Logo Chickasaw Nation Industries, Inc (CNI) · IT - Administration

Cloud Security Assessor

United States, Ft. Meade 131000.00 - 155000.00 USD / Year · Job Posted January 04, 2026
Apply Position
Job Link Share

Job Description

The Cloud Information Assurance Analyst provides support to the agency. This position provides advanced technical expertise to define and assess technical problems and needs as well as advise senior management, department heads and/or staff on alternate methods of solving issues. The Senior IT Consultant recommends specific solutions based on specialized capabilities to perform and integrate highly complex services in several operational, functional, or organizational areas.

Job Responsibility

  • Performs analysis, conduct independent validation of assessments and continuous monitoring for authorized Cloud Service Providers Cloud Service Offerings
  • Develop processes and procedures to document the execution of the analysis and validations
  • Reviews Cloud Service Provider documentation consisting of the System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), and associated POA&M
  • Prepares Cloud Security Assessment Package
  • Performs DoD and FedRAMP Cloud Authorization on-going support to include continuous monitoring, annual reviews, and significant change requests of Cloud Service Providers through reviews, recommendations, written reports, and briefings

Requirements

  • Required DOD Top Secret Clearance with SCI eligibility
  • Must have DOD 8570 IAM III Certification - CISSP, CISM
  • Expert knowledge of proven business and operations practices and strategies
  • Proficient understanding of Restful APIs, JSON
  • Proven ability to facilitate progressive organizational change / development within a growing organization
  • Excellent organization and time management skills with ability to handle multiple priorities
  • Exceptional analytical and problem-solving skills with ability to assess business requirements
  • Exceptional leadership skills with ability to motivate, influence and lead others
  • High level of proficiency in briefing managers and communicating recommendations regarding status of project operations
  • Excellent verbal and written communications skills
  • Superior customer service and relationship management skills
  • Ability to effectively interact with management and staff at all levels within a multi-level organization
  • Ability to proactively identify problems and effectively respond
  • Ability to use discretion concerning highly sensitive and confidential data and information
  • Proficient understanding of cross-browser compatibility issues and ways to work around them
  • Experience with configuration management, version control, software packaging and deployment
  • Ability to perform system analysis, design and development
  • Ability to work well in a team as well as independently
  • Excellent oral and written communications skills
  • Bachelor's degree and a minimum of ten (10) years’ relevant experience, or equivalent combination of education / experience
  • Must have relevant consulting experience in information technology with specialized experience in an applicable functional area
  • Five (5) years of experience developing ASP.NET applications and a good understanding of ASP.NET page life cycle events
  • Experience programming ASP.NET web applications using C# and .NET Framework
  • Experience with SQL server database design and development
  • Experience developing stored procedures, functions packages using T-SQL (SQL Server)
  • Experience with front-end development with JavaScript Libraries such as jQuery and Angular JS

What we offer

  • Medical
  • Dental
  • Vision
  • Company Life Insurance
  • Short-Term and Long-Term Disability Insurance
  • 401(K) Immediate Vesting
  • Professional Development Assistance
  • Legal Aid Assistance Program
  • Family Planning / Fertility Assistance
  • Personal Time Off
  • Observance of Federal Holidays
  • Employee Assistance Program (EAP)
  • Training and Development Opportunities
Chickasaw Nation Industries, Inc (CNI) - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cloud Security Assessor

8 matching positions

Cloud Security Assessor

The Cloud Information Assurance Analyst provides support to the agency. This pos...
Location
Location
United States , Ft. Meade
Salary
Salary:
131000.00 - 155000.00 USD / Year
chickasaw.com Logo
Chickasaw Nation Industries, Inc (CNI)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Required DOD Top Secret Clearance with SCI eligibility
  • Must have DOD 8570 IAM III Certification - CISSP, CISM
  • Expert knowledge of proven business and operations practices and strategies
  • Proficient understanding of Restful APIs, JSON
  • Proven ability to facilitate progressive organizational change / development within a growing organization
  • Excellent organization and time management skills with ability to handle multiple priorities
  • Exceptional analytical and problem-solving skills with ability to assess business requirements
  • Exceptional leadership skills with ability to motivate, influence and lead others
  • High level of proficiency in briefing managers and communicating recommendations regarding status of project operations
  • Excellent verbal and written communications skills
Job Responsibility
Job Responsibility
  • Performs analysis, conduct independent validation of assessments and continuous monitoring for authorized Cloud Service Providers Cloud Service Offerings
  • Develop processes and procedures to document the execution of the analysis and validations
  • Reviews Cloud Service Provider documentation consisting of the System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), and associated POA&M
  • Prepares Cloud Security Assessment Package
  • Performs DoD and FedRAMP Cloud Authorization on-going support to include continuous monitoring, annual reviews, and significant change requests of Cloud Service Providers through reviews, recommendations, written reports, and briefings
  • Reviews and analyzes Deviation Requests, Monthly One Pagers, Annual Assessments, Playbooks, Significant Change Requests, review of scan data, POA&Ms, and other changes to evaluate a CSP’s ongoing risk posture change
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Company Life Insurance
  • Short-Term and Long-Term Disability Insurance
  • 401(K) Immediate Vesting
  • Professional Development Assistance
  • Legal Aid Assistance Program
  • Family Planning / Fertility Assistance
  • Personal Time Off
  • Fulltime
Read More
Arrow Right

Security Assessor

Our client, a cybersecurity consultancy operating across the UAE, is seeking an ...
Location
Location
United Arab Emirates , Abu Dhabi
Salary
Salary:
Not provided
airswift.com Logo
Airswift Sweden
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong core knowledge of Big Data Platforms and data lifecycle management
  • Deep understanding of Data Security, including: Data classification and governance, Encryption at rest and in transit, Identity and access management for data platforms
  • Application Security (secure design, vulnerability identification, API and service-level security)
  • CI/CD Automation Security (pipeline security, credential management, secure build and deployment practices)
  • Infrastructure Security (cloud and traditional infrastructure, network segregation, platform hardening)
  • Proven experience delivering Risk Assessment and Security Assessment Reports
  • Strong written and verbal communication skills
  • Ability to translate complex technical risks into clear business impact
  • Structured, methodical approach to security assessment and documentation
  • Confident working in client-facing consulting environments
Job Responsibility
Job Responsibility
  • Conduct security assessments of Big Data platforms, evaluating how data is ingested, stored, processed, and secured
  • Review and validate data security controls, including encryption, access controls, key management, and data governance measures
  • Assess application security risks across data-driven applications and services
  • Evaluate security controls within CI/CD pipelines, focusing on automation security and secure software delivery practices
  • Perform infrastructure security assessments across on-prem, cloud, and hybrid environments supporting big data platforms
  • Identify security gaps, risks, and control weaknesses aligned to industry standards and best practices
  • Produce clear, high-quality risk assessment and security assessment reports tailored for both technical and non-technical stakeholders
  • Work directly with client engineering and architecture teams to explain findings and remediation priorities
  • Fulltime
Read More
Arrow Right

Security Control Assessor (SCA) Professional– Level IV/Subject Matter Expert (SME)

Arcfield's Cyber programs are expanding and are currently in need of Level IV/ S...
Location
Location
United States , Chantilly
Salary
Salary:
Not provided
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must possess and be able to maintain a TS/SCI clearance with polygraph
  • BA/BS or higher STEM degree
  • BS 8-10 years of experience, MS 6-8 years of experience, PhD 3-5 years of experience
  • SCA experience
  • Certifications (At least one of the below): CAP, CASP, CISM, CISSP (or Associate), GSCL, CGRC/CAP, Cloud+, CYSA+, GSEC, PenTest+
  • Relevant experience in technical project management
  • Advanced IS security skills and knowledge
  • Familiarity with IA concepts
  • Ability to review and recommend vulnerability and risk levels associated with SW and HW products
  • Practical experience developing and implementing security related directives
Job Responsibility
Job Responsibility
  • Review and assess information systems (IS) for compliance with IC, DoD, and ND guidelines
  • Provide IS security advice and guidance to government and industry partners
  • Advise Information System Owners (ISO) on confidentiality, integrity, and availability impact values
  • Offer technical guidance for Authorization and Accreditation (A&A) responses
  • Evaluate IS threats and vulnerabilities, recommending additional safeguards as needed
  • Support development and implementation of NRO IT-IA-IM policies
  • Contribute to future NRO IS security policy development
  • Conduct site visits and assessments, prepare written reports for government approval
  • Ensure completion of security control assessments for each IS
  • Support RMF process-related presentations, briefings, and reports
  • Fulltime
Read More
Arrow Right

Head of Governance, Risk and Compliance - CISO function - BPL

The Head of GRC leads the pillar responsible for ensuring the organisation under...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CISM, CRISC, or CISSP certification
  • Experience with DORA (Digital Operational Resilience Act) compliance requirements and implementation
  • ISO 27001 Lead Auditor or Lead Implementer certification
  • PCI QSA or Internal Security Assessor (ISA) qualification
  • Previous experience in FinTech, Digital Banking, Payment Acquiring organisation
  • Experience with Visa GACS and Mastercard SDP acquirer compliance programmes
  • Significant experience of progressive experience in information security governance, risk, and compliance, with at least 5 years leading a GRC team in a regulated environment
  • Strong understanding of UK GDPR and the role of security controls in meeting data protection obligations, including breach notification requirements and data protection impact assessments
  • Experience designing and operating security control frameworks mapped to multiple regulatory requirements simultaneously (e.g., a single framework serving PCI DSS, FCA, and GDPR)
  • Understanding of cloud-native architectures and their implications for compliance and risk management
Job Responsibility
Job Responsibility
  • Own the security policy framework, ensuring policies are current, proportionate, and aligned to PCI DSS, FCA expectations, UK GDPR, and DORA requirements
  • Maintain and operate the security risk register, ensuring risks are assessed consistently using a defined methodology, owned explicitly, and reported accurately to the CISO and Executive Leadership Team (ETL)
  • Manage the relationship with external auditors, the Qualified Security Assessor (QSA), and 2nd/3rd Line of Defence (LoD) on all security and technology risk matters
  • Own the third-party security assurance process, ensuring all vendors, partners, and card scheme integrations are risk-assessed with a tiered approach proportionate to data access and criticality
  • Chair the monthly Cyber and Tech Risk and Controls Forum, presenting risk posture, compliance status, and material findings to the CISO, CIO and ELT
  • Design and maintain the control framework, mapping controls to PCI DSS, FCA, UK GDPR, and DORA requirements, and ensuring control effectiveness is tested on a continuous cycle
  • Produce KRI dashboards and risk reporting for CISO, CIO, and ELT consumption, ensuring risk is communicated in business terms
  • Lead regulatory and audit engagement on security matters, coordinating regulatory review and audit interactions and proactively managing stakeholder relationships
  • Own the risk assessment calendar, ensuring both cyclical and event-driven assessments are executed on schedule with appropriate rigour
  • Manage the risk acceptance process, ensuring risk acceptance decisions are documented, time-bound, approved at the appropriate authority level, and reviewed before expiry
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Head of Global Assurance

Scale seeks a Head of Global Assurance to lead a high-performing team of technic...
Location
Location
United States , Washington
Salary
Salary:
287200.00 - 359000.00 USD / Year
scale.com Logo
Scale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in cybersecurity compliance, GRC, public and commercial sector assurance, IT audit, cloud security, or related roles
  • Active U.S. security clearance, SCI eligible
  • Experience leading global or region-specific assurance programs through scalable control frameworks and cross-functional execution
  • Experience managing senior technical assurance, cybersecurity compliance, GRC, audit, or control evidence professionals
  • Experience managing distributed teams across time zones
  • Deep familiarity with FedRAMP, continuous monitoring, authorization packages, and related NIST frameworks
  • Experience leading customer assurance, control evidence, remediation, reporting, and audit workflows
  • Experience overseeing SOC 2, ISO 27001, and other commercial assurance frameworks
  • Experience with external assessors, authorizing officials, government customers, public sector partners, commercial auditors, or certification bodies
  • Experience working with legal teams on contract-driven assurance obligations, and strong judgment on when to escalate legal, contractual, technical, security, customer-facing, or privileged issues
Job Responsibility
Job Responsibility
  • Lead assurance programs across Scale’s Global Public Sector and Commercial businesses, including FedRAMP, NIST frameworks, SOC 2, ISO 27001, and other customer, regulatory, and business assurance requirements
  • Manage and develop a technical assurance team responsible for public sector authorizations, commercial assurance, audits, customer commitments, control evidence, remediation, and reporting
  • Set priorities and operating cadences for assurance workflows, including intake, evidence collection, control owner follow-up, remediation tracking, metrics, and deadline management
  • Build the metrics, dashboards, and reporting cadences that give company leadership a clear view of program health, key risks, and strategic priorities
  • Partner with Legal on contract-driven assurance obligations, sensitive escalations, external-facing responses, and customer-facing representation issues
  • Work closely with Global Public Sector, Enterprise, Security, Engineering, Product, and other control owners to validate evidence, track remediation, and support authorization and audit requirements
  • Collaborate across Legal and GRC on a unified controls framework for security and other regulatory requirements
  • Manage relationships with external auditors, assessors, and certification bodies
What we offer
What we offer
  • Comprehensive health, dental and vision coverage
  • Retirement benefits
  • Learning and development stipend
  • Generous PTO
  • Commuter stipend
  • Fulltime
Read More
Arrow Right

Senior Infrastructure Role

Data Center Modernization – Cisco ACI Migration Lead the design, architecture, a...
Location
Location
United States , McLean
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 12 years of progressive experience in enterprise infrastructure engineering, with strong senior-level experience in data center and wireless network architecture
  • CompTIA Security+ CE or equivalent (DoD 8570/8140 IAT II)
  • Cisco Certified Network Professional – Enterprise Wireless (CCNP Enterprise)
  • Practical experience with Cisco ACI: fabric design, APIC management, tenant/EPG configuration, and NX-OS migration
  • Strong familiarity with Cisco Nexus platforms and NX-OS, including multi-tier data center switches and SAN management
  • Advanced knowledge of enterprise wireless—including WLC/AP deployment, RF planning, WIPS/WIDS executions, and Cisco DNA Center operations
  • Experience in AWS cloud services: EC2, VPC, IAM, S3, RDS, CloudWatch, AWS Config, Security Hub
  • Proficient in Infrastructure as Code through Terraform, AWS CloudFormation, or Ansible
  • Comprehensive understanding of DISA STIGs, RMF, NIST 800-53, and federal compliance frameworks
  • Experience supporting ATO efforts and working collaboratively with ISSOs, security assessors, and compliance personnel
Job Responsibility
Job Responsibility
  • Lead the design, architecture, and full implementation of the new Cisco ACI fabric, facilitating the enterprise-wide migration from legacy NX-OS systems
  • Direct and execute the strategy for transitioning from NX-OS to Cisco ACI, including tenant setup, EPG development, policy creation, and fabric discovery
  • Configure and manage the Cisco Nexus Dashboard to achieve centralized visibility, operations management, and policy orchestration across the data center network
  • Supervise the SAN environment, ensuring optimal storage connectivity, zoning, and fabric health during and after the ACI migration
  • Create and maintain comprehensive migration runbooks, cutover roadmaps, and rollback procedures to guarantee operational continuity for mission-critical workloads
  • Work closely with cloud architects and application teams to enable effective integration between the upgraded data center fabric and AWS cloud platforms
  • Support and help lead the enterprise Wireless Refresh project from initial design through deployment, establishing a robust, high-performing wireless infrastructure
  • Design and implement the updated wireless network with advanced Wireless Intrusion Prevention and Detection (WIPS/WIDS) to enhance security monitoring across all locations
  • Deploy and configure new Wireless LAN Controllers (WLCs) and Access Points (APs) for reliable coverage, capacity, and performance in geographically distributed areas
  • Utilize Cisco DNA Center services for optimization, policy enforcement, AI-driven analytics, and complete lifecycle management of the wireless network
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Senior Certification Manager

As a Senior Certification Manager on the certifications team at Palo Alto Networ...
Location
Location
United States , California
Salary
Salary:
148700.00 - 240525.00 USD / Year
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience supporting or leading technology-focused FedRAMP risk assessments, Continuous Monitoring, and remediation efforts
  • Demonstrated ability to make risk-based decisions and interpret security controls in complex, real-world environments
  • Working knowledge of public cloud platforms (GCP, AWS, and/or Azure), including how cloud-native architectures and services implement and enforce security controls
  • Experience working effectively in distributed environments with multiple teams operating across different priorities and time zones
  • Proactive, curious, and transparent approach
  • assertive yet collaborative, comfortable taking ownership and driving work to completion with minimal supervision
  • Proven ownership of complex, cross-functional initiatives, including planning, execution, and stakeholder communication
  • Hands-on authorship and long-term maintenance of SSPs and supporting certification documentation
  • BS degree, equivalent technical degree, or equivalent military experience
  • CISA, CRISC, CISSP or other similar security certifications desired
Job Responsibility
Job Responsibility
  • Own and execute certification strategies in close partnership with product management, sales, and engineering, ensuring outcomes align with company priorities, product direction, and compliance changes
  • Drive FedRAMP Moderate, High, and IL5 assessment activities in partnership with engineering, security, and external assessors
  • Apply NIST 800-53, FedRAMP, and DoD SRG requirements to define clear, actionable expectations and deliverables for internal teams
  • Lead audit and Continuous Monitoring (ConMon) execution, including evidence coordination, remediation planning, and POAM lifecycle management
  • Author and maintain the System Security Plan (SSP) and supporting artifacts as systems and processes change
  • Apply a deep understanding of complex security and cloud architecture to evaluate control implementation, identify gaps, and drive remediation with engineering teams
  • Build deep technical fluency across the product portfolio to lead discussions with assessors, agencies, and PMO certification bodies
  • Manage certification execution with a program management mindset by owning project plans, timelines, dependencies, and risks, and by providing clear status to stakeholders and leadership
  • Fulltime
Read More
Arrow Right

Senior Compliance Advisor

We are on the lookout for a competent and enthusiastic Senior Compliance Advisor...
Location
Location
United States
Salary
Salary:
Not provided
quzara.com Logo
Quzara
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree in Information Technology, Cybersecurity, or a related field
  • A minimum of 5 years’ experience in cloud security and compliance, with a strong focus on FedRAMP
  • Demonstrated ability to manage projects efficiently under tight deadlines and budget constraints
  • Proven leadership skills and experience in a role requiring a proactive and hands-on approach
  • Strong negotiation and communication skills, with the ability to engage effectively with technical and compliance professionals
  • In-depth knowledge of cloud security principles and FedRAMP guidelines
Job Responsibility
Job Responsibility
  • Independently lead walkthroughs and manage projects, ensuring adherence to timelines and budgets
  • Efficiently coordinate and produce critical deliverables, including comprehensive policies and procedures documentation
  • Conduct thorough reviews of assessments performed by third-party assessors for accuracy and completeness
  • Skillfully negotiate with federal customers, clarifying and interpreting compliance requirements and control implementations
  • Facilitate fluent conversations with technical architects and compliance experts, bridging technical and compliance perspectives
  • Drive technical discussions on cloud security controls and FedRAMP requirements, demonstrating deep subject matter expertise
  • Execute comprehensive gap assessments, identifying risks and developing strategies for compliance
  • Provide mentorship and guidance to team members, fostering an environment of learning and growth in FedRAMP processes
  • Stay abreast of changes in FedRAMP regulations, ensuring all strategies and processes are up-to-date and compliant
  • Embrace a hands-on, proactive approach to all tasks, demonstrating a strong commitment to achieving project goals and client satisfaction
  • Fulltime
Read More
Arrow Right