Cloud Cybersecurity Compliance Engineer
Educology Solutions
Rockville, MD
Expired: May 06, 2024
Applications are no longer accepted.
- Other
ESI is seeking a Cloud Cybersecurity Compliance Engineer to help with the cloud
cybersecurity compliance program of one of our customers. Their primary focus will be to identify and prioritize cloud related risks enterprise-wide, executing comprehensive risk assessments and control gap analyses in line with established information security policies and widely recognized risk management frameworks applicable to a range of public cloud environments.
Duties & Responsibilities
- Designing, implementing, and continuously improving the County's cloud information
security/privacy compliance program based on applicable policies, local/state/federal
laws/regulations and adopted risk management frameworks. - Designing, implementing, leading cloud-based risk assessments and control gap analysis procedures, activities, documents, and communication plans
- Leveraging NIST 800-53/FedRAMP assessment experience, technical, and program management skills to lead, plan, track, collaborate and report on the cloud governance, risk compliance program deliverables, including scheduling/leading meetings, assigning/tracking action items, and developing status reports.
- Performing cross functional interviews with business, technical and information security partners to determine if information security/privacy controls are implemented correctly, operating as intended, and producing the desired results.
- Communicating program controls, measurements, metrics, and assessment results confidentially, professionally, and effectively, in both written and verbal formats, with business, technical, and third-party stakeholders
- 5+ years-experience applying governance, risk, compliance principles to public cloud
ecosystems such as AWS (Amazon), Azure (Microsoft) and/or (GRC) Google - 5+ years-experience designing/implementing cloud-based information security/privacy polices
mapped to industry standards and regulatory frameworks (e.g., NIST 800-53, FedRAMP, PCI,
HIPAA etc.) - Designing, implementing, and performing cloud-based risk assessments and control gap
analysis; identifying, analyzing, and evaluating cloud security/privacy risks through analysis of
vendor-provided SOC2 and other cloud security control documentation. - Proven ability to communicate confidentially, professionally, and effectively, in both written
and verbal formats, with business, technical, and third-party stakeholders. - Developing monitoring, gathering, and analyzing information security and compliance metrics
for management for the cloud environment.
Address
Educology Solutions
Rockville, MD
20849
USA
Industry
Technology
Get fresh Cloud Cybersecurity Compliance Engineer jobs daily straight to your inbox!
You Already Have an Account
We're sending an email you can use to verify and access your account.
If you know your password, you can go to the sign in page.