Cyber Security Architect - SAAS

Cyber Security Architect - SAAS

• Contract to Hire
• Remote 
• Due to our government client requirements, we can only consider US Citizens or Green Card holders for this position.
  
• NO THIRD PARTY RECRUITERS PLEASE!  CANDIDATES MUST BE SELF-REPRESENTED.

Description

We are looking for a skilled SaaS Security Architect to support our clients Software as a Service (SaaS) Governance program. This role is focused on helping the agency accelerate the secure use of SaaS through the implementation of a continuous monitoring strategy for SaaS applications agency-wide, including the deployment of SaaS Security Posture Management (SSPM) tools to actively monitor SaaS configurations for security risk. Specifically in this role you will support the deployment of the agency SSPM tool (currently AppOmni), including development of application-specific policy baselines. You will work with business and operations teams to promote effective use of the tool agency-wide and create associated documentation and processes. You will lead and drive all aspects of SaaS continuous monitoring including integration of SaaS applications with existing identity management systems and security operations process. You will develop strategies to streamline, automate, and scale the process of onboarding SaaS applications into the continuous monitoring framework. You will work with agency cybersecurity leadership to develop and enhance policies and guidelines related to SaaS monitoring and secure use, and maintain and enhance the strategy and documentation related to SaaS continuous monitoring. This includes the evaluation and testing of new monitoring tools. You will also help maintain and enhance the overall SaaS governance framework.

Responsibilities

• Lead the agency deployment of SSPM tool(s) to enable risk visibility and mitigation across deployed SaaS applications agency-wide, with a focus on automating and scaling SaaS application onboarding.
• Maintain and enhance the agency SaaS continuous monitoring strategy and all associated documentation. Represent the strategy to all client stakeholders.
• Collaborate with the broader SaaS Governance team to share SaaS monitoring insights and provide recommendations on SaaS policies and procedures.
• Recommend and provide guidance to SaaS operations teams business owners related to SaaS application security monitoring.
• Develop enterprise-wide standards for monitoring the cyber risk posture of deployed SaaS applications.
• Provide recommendations to the CISO and other security leadership to improve SaaS governance and reduce risk in SaaS usage.
• Evaluate tools and technologies to improve and automate SaaS security monitoring.
• Support and lead evolving business development efforts through the application of technical/functional expertise to develop sound business solutions.
• Identify and influence future work beyond current project, consistent with the account strategy or corporate objectives.
• Build a productive relationship with the client and understand their structure and goals.
• Contribute specialized domain or technical content to proposal sections or client white papers.

Requirements

• Bachelor's degree preferably in cybersecurity, computer science, or a technology related field.
• 9+ years of related IT/cyber work experience.
• Experience reviewing IT security and compliance documentation from a risk perspective.
• Experience deploying security monitoring tools, ideally SSPM tools such as AppOmni, and associated configuration baselines.
• Expertise with NIST SP 800-53 controls and the NIST risk management framework.
• Understanding of SaaS applications and their security considerations.
• Strong working knowledge of application security concepts and approaches.
• Strong analytical and writing skills.
• Excellent teamwork, organizational, communication, and collaboration skills.

Desired 

• At least five (5) years of experience with IT Security frameworks (FedRAMP, NIST, etc.).
• Application security or development experience.
• CISSP, CCSP, CISA, CISM or similar certification.
• Experience with cloud environments, particularly AWS, encompassing architecture, services, security, and governance.
• Prior federal government IT consulting experience.

Please Note:

• Only those individuals selected for an interview will be contacted.
• No calls, inquiries, or Third-Party Vendors please.
• We are an equal opportunity employer. We encourage applications from candidates of all backgrounds and experiences. (The ACI Group is unable to sponsor H1B Visas).
• $1000 Referral Bonus - www.aci.com.

Since 1988, The ACI Group, a Baltimore-based staffing firm, has been committed to hiring the industry's leading professionals, and presenting exciting career opportunities. We have access to varied types of contract, permanent and contract-to-perm positions and offer a choice of employment options including a full benefits package.