DHCF DCAS Cyber Security Cloud Engineer - Remote

Client: DCAS

Due 04/29/2024

Location Remote

Rate $60 $75 ( for the right candidate will go higher)

Position ID 728705

DC Department of Health Care Finance District of Columbia Access System (DCAS) is seeking a qualified and experienced Security Cloud Engineer to enhance and manage the organizations cybersecurity posture. The selected candidate will play a crucial role in safeguarding sensitive data ensuring compliance with regulations and strengthening the agencys overall security framework on a contract basis. The Cybersecurity Cloud Engineer will be responsible for assessing implementing and maintaining the security measures necessary to protect the organizations digital assets and information.

Scope of Work:

The Security Cloud Engineer will support the District of Columbia Access System (DCAS) under the Technical Program manager to identify security vulnerabilities design and implement security solutions monitor security systems and respond to security incidents impacting DHCF onpremises and cloud hosted resources. The contractor shall provide subject matter expertise in the design development and implementation of security best practices which includes but is not limited to network security application security access control and security policy development.

Responsibilities:

Indepth knowledge of cloud security best practices principles and technologies including IAM encryption network security container security and serverless security.

Handson experience with cloud security tools and services such as AWS Security Hub AWS native security services cloudtrail guard duty security groups cloudwatch.

Review the design and implement secure AWS cloud architecture solutions including VPC configurations security groups IAM policies encryption mechanisms and logging and monitoring for the AWS cloud environment.

Conduct vulnerability assessments and penetration testing on AWS infrastructure and applications. Develop and implement remediation plans to address security vulnerabilities and weaknesses.

Strong understanding of security compliance requirements and frameworks (e.g. GDPRHIPAA SOC 2 ISO 27001) and experience implementing controls and measures to achieve compliance.

proficiency in scripting and automation for security automation and orchestration.

Excellent analytical and problemsolving skills with the ability to assess complex security issues and develop effective solutions.

Provide security training and guidance to AWS users developers and administrators to promote a culture of security

awareness and compliance within the organization.

CONTRACT JOB DESCRIPTION

Responsibilities:

1. Expertise in implementing administrating and operating information security technologies such as firewalls IDS/IPS SIEM Antivirus network traffic analyzers and malware analysis tools.

2. Utilizes advanced experience with scripting and tool automation such as Perl PowerShell Regex.

3. Develops leads and executes information security incident response plans.

4. Develops standard and complex IT solutions & services driven by business requirements and industry standards.

5. May also leverage dynamic and static code assessment tools to measure vulnerability of applications throughout the SDLC.

Minimum Education/Certification Requirements:

BS Degree in IT Computer Science or Engineering or equivalent experience Masters Degree in Engineering or Computer Science is HIGHLY PREFERRED

This position is housed under the Department of Health Care Finance in direct support of the DC Access System (DCAS).