Cyber Security Analyst (Jr)
Role summary
This hybrid remote role supports the U.S. Air Force Cloud One Architecture and Common Shared Services contract as a Cyber Security Analyst. The position focuses on providing Incident Response (IR) and security operations support for a multi-cloud enterprise environment (AWS, Azure, Oracle, GCP) across various DoD Impact Levels. Key responsibilities include ISSO/ISSM functions, ATO sustainment, continuous monitoring, vulnerability management, and ensuring cybersecurity compliance with stringent DoD and NIST standards. The analyst will collaborate with government stakeholders and engineering teams to maintain compliance, improve security posture, and remediate vulnerabilities. A Bachelor's degree and 2+ years of experience in cloud security, CSSP, SIEM, and Incident Response are required, along with an active Secret clearance and CompTIA Security+ certification.
This role supports the U.S. Air Force Cloud One Architecture and Common Shared Services contract and currently has an opening for a Cyber Security Analyst.
Location: This position will be hybrid remote. Candidates will be required to work onsite as needed. Preferred candidates will be located near Hanscom AFB (Boston, MA).
Responsibilities:
The Cyber Operations Engineer will provide Incident Response (IR) and security operations support for the USAF Cloud One (C1) enterprise cloud environment supporting AWS, Azure, Oracle, and GCP at DoD Impact Levels (IL) 2–6. The position directly supports ISSO/ISSM functions, ATO sustainment, continuous monitoring, vulnerability management, and cybersecurity compliance activities in accordance with DoDI 8500.01, DoDI 8510.01 (RMF), AFI 17-101 (RMF), DoD Cloud Computing SRG, and NIST SP 800-53
This role will work closely with Government ISSOs, ISSMs, Authorizing Officials (AOs), Cybersecurity Service Providers (CSSPs), and Cloud One engineering teams to ensure continued ATO compliance, security posture improvement and monitoring, and rapid remediation of vulnerabilities within the C1 environment.
- Maintain audit log configuration, monitoring, and retention compliance.
- Support incident reporting and documentation in accordance with DFARS 252.204-7012 and 252.239-7010.
- Ensure compliance with SCCA and Cloud SRG requirements.
- Support secure configuration of AWS, Azure, Oracle, and GCP cloud environments.
- Support the development, updates, and maintenance of RMF authorization artifacts in accordance with DoDI 8510.01 and NIST SP 800-53.
- Support Continuous Authorization to Operate (cATO) within a DevSecOps or cloud-based environment, including implementation of automated control validation, continuous monitoring integration, and real-time POA&M management.
- Support ATO maintenance and sustainment activities for C1 and DPaaS environments.
- Support Authority to Use (ATU) conditions and remediation tracking as directed by the AO.
- Assist Government ISSO/ISSM with maintaining compliance with:
- DoDI 8500.01 (Cybersecurity)
- DoDI 8510.01 (RMF)
- AFI 17-101 (RMF)
- DoD Cloud Computing SRG
- DISA STIG/SRG
- CNSSI 1253
- Support security control assessments, audit readiness, and third-party cybersecurity inspections.
### Requirements
- Bachelors and 2+ years or more of experience
- Sufficient Cloud Experience
- CSSP experience
- SIEM experience
- Incident Response
- Additional experience may be accepted in lieu of degree.
- Active Secret clearance required
- US citizenship required
- CompTIA Security+ (IAT Level II) or equivalent required
Preferred Qualifications
- Experience with USAF Cloud One or Platform 1
- Experience with Zero Trust Architecture
- Cloud certifications in AWS, Azure, Google, or Oracle clouds
- Automation experience
- Certifications: CISSP (IAT Level III) or equivalent
### Benefits
SES provides a competitive salary and the following benefits:
- Medical
- Dental
- Vision
- AD&D
- STD
- LTD
- Company paid Life Insurance
- 401k with employer contribution
- Paid Time Off
- Pet Insurance