Information Technology Security Specialist (Washington)
Creative Information Technology, Inc., Washington, District Of Columbia, United States
About us:
Creative Information Technology Inc (CITI) is an esteemed IT enterprise renowned for its exceptional customer service and innovation. We serve both government and commercial sectors, offering a range of solutions such as Healthcare IT, Human Services, Identity Credentialing, Cloud Computing, and Big Data Analytics. With clients in the US and abroad, we hold key contract vehicles including GSA IT Schedule 70, NIH CIO-SP3, GSA Alliant, and DHS-Eagle II.
Join us in driving growth and seizing new business opportunities!
Job Description:
Project Description:
The IT Security Engineering Team is supporting a data access management project that requires a Senior Cloud Security Specialist with proficiency in REST API integrations. The Senior Cloud Security Specialist will need to provide hands-on API integration support between cloud applications using modern and secure techniques.
Background:
We are seeking a Senior Cloud Security Specialist to support the Security Engineering team within the IT division at the Board of Governors of the Federal Reserve. This team is responsible for the strategy, design, deployment, and maintenance of effective security solutions in cloud, local, and hybrid environments.
Required Experience:
Extensive REST API experience specifically in implementing, securing, automating, testing, and documenting API integrations.
Strong understanding of resilient integration patterns including error handling, retry mechanisms, and monitoring strategies
Proficient in scripting and automation languages for security orchestration
Preferred Qualifications:
AWS Certified Security - Specialty (strongly preferred)
AWS Certified Solutions Architect - Professional or Associate
Prefer experience with integrations between ServiceNow, Collibra, and Saviynt
Experience implementing cloud-native serverless architectures and services
Experience architecting and implementing security controls across public cloud platforms
Experience implementing DevSecOps practices including continuous integration/deployment pipelines and infrastructure as code methodologies
Experience implementing cloud access security broker (CASB) solutions for SaaS application security and visibility
Strong understanding of security concepts and technologies related to Identity and Access
Management (IAM), security engineering, network security design, security operations, security architecture, general engineering processes, cloud security, data loss protection, zero trust, DevSecOps and vulnerability management.
Demonstrated federal experience and comprehensive knowledge in adopting and implementing federal cybersecurity requirements, including but not limited to the NIST Cybersecurity Framework, OMB Memorandum M-22-09, NIST SP 800-53
Possess deep analytical, problem-solving, and troubleshooting experience, to independently resolve complex security challenges.
Proven ability to provide technical security consultation and advisory services with a proactive approach to identifying potential issues, raising questions, and engaging in open dialogue with team members and stakeholders to ensure security objectives are met.
Deliverables:
API integration architecture document detailing out the integrations between cloud systems.
Data model and attribute mapping across cloud systems.
Automation scripts and orchestration (serverless functions, scheduled jobs, event
handlers)
Build resilient, secure API integrations between cloud applications in support of an end to-end data access management solution.
Comprehensive testing and documentation of cloud integrations
Support data loss prevention and cloud access security broker cloud initiatives
Work across multiple teams as a Cloud Security Engineer SME to support security design, build, implementation, and monitoring of cloud platforms, applications, and tools.
Offer technical consultation to cloud engineering teams on secure implementations
Create or update security configuration guides and playbooks
How to Apply:
To apply for the
Senior Cloud Security Specialist
role, please submit your resume to ashrivastava@citi-us.com.
Applications will be reviewed on a rolling basis until the position is filled. We look forward to reviewing your application.
Creative Information Technology Inc (CITI) is an esteemed IT enterprise renowned for its exceptional customer service and innovation. We serve both government and commercial sectors, offering a range of solutions such as Healthcare IT, Human Services, Identity Credentialing, Cloud Computing, and Big Data Analytics. With clients in the US and abroad, we hold key contract vehicles including GSA IT Schedule 70, NIH CIO-SP3, GSA Alliant, and DHS-Eagle II.
Join us in driving growth and seizing new business opportunities!
Job Description:
Project Description:
The IT Security Engineering Team is supporting a data access management project that requires a Senior Cloud Security Specialist with proficiency in REST API integrations. The Senior Cloud Security Specialist will need to provide hands-on API integration support between cloud applications using modern and secure techniques.
Background:
We are seeking a Senior Cloud Security Specialist to support the Security Engineering team within the IT division at the Board of Governors of the Federal Reserve. This team is responsible for the strategy, design, deployment, and maintenance of effective security solutions in cloud, local, and hybrid environments.
Required Experience:
Extensive REST API experience specifically in implementing, securing, automating, testing, and documenting API integrations.
Strong understanding of resilient integration patterns including error handling, retry mechanisms, and monitoring strategies
Proficient in scripting and automation languages for security orchestration
Preferred Qualifications:
AWS Certified Security - Specialty (strongly preferred)
AWS Certified Solutions Architect - Professional or Associate
Prefer experience with integrations between ServiceNow, Collibra, and Saviynt
Experience implementing cloud-native serverless architectures and services
Experience architecting and implementing security controls across public cloud platforms
Experience implementing DevSecOps practices including continuous integration/deployment pipelines and infrastructure as code methodologies
Experience implementing cloud access security broker (CASB) solutions for SaaS application security and visibility
Strong understanding of security concepts and technologies related to Identity and Access
Management (IAM), security engineering, network security design, security operations, security architecture, general engineering processes, cloud security, data loss protection, zero trust, DevSecOps and vulnerability management.
Demonstrated federal experience and comprehensive knowledge in adopting and implementing federal cybersecurity requirements, including but not limited to the NIST Cybersecurity Framework, OMB Memorandum M-22-09, NIST SP 800-53
Possess deep analytical, problem-solving, and troubleshooting experience, to independently resolve complex security challenges.
Proven ability to provide technical security consultation and advisory services with a proactive approach to identifying potential issues, raising questions, and engaging in open dialogue with team members and stakeholders to ensure security objectives are met.
Deliverables:
API integration architecture document detailing out the integrations between cloud systems.
Data model and attribute mapping across cloud systems.
Automation scripts and orchestration (serverless functions, scheduled jobs, event
handlers)
Build resilient, secure API integrations between cloud applications in support of an end to-end data access management solution.
Comprehensive testing and documentation of cloud integrations
Support data loss prevention and cloud access security broker cloud initiatives
Work across multiple teams as a Cloud Security Engineer SME to support security design, build, implementation, and monitoring of cloud platforms, applications, and tools.
Offer technical consultation to cloud engineering teams on secure implementations
Create or update security configuration guides and playbooks
How to Apply:
To apply for the
Senior Cloud Security Specialist
role, please submit your resume to ashrivastava@citi-us.com.
Applications will be reviewed on a rolling basis until the position is filled. We look forward to reviewing your application.