Cloud Security Posture Management SME

About the Job

Cloud Security Posture Management SME

Falls Church, Virginia.

Full-time.

Important Notice: This position is contingent upon contract award.

Summary:

Cloud Security SMEs monitor and secure cloud environments including AWS GovCloud, Azure Government, and DoD cloud services. They implement Cloud Security Posture Management (CSPM), configure cloud-native security controls, monitor for misconfigurations, ensure compliance with DoD Cloud Computing SRG, and manage Infrastructure-as-Code security.

Key Responsibilities:

Monitor 10-30 cloud accounts/subscriptions requiring security oversight.

Manage security for 500-2,000 cloud resources (VMs, storage, databases, etc.)

Perform automated CSPM scans identifying 50-200 configuration issues daily.

Review and validate 100-400 security groups/firewall rules.

Assess 200-500 DoD Cloud SRG controls across cloud environments.

Review 20-50 Infrastructure-as-Code templates monthly for security compliance.

Support 5-10 cloud migration projects annually with security assessments.

Implement cloud-native security controls and monitoring. Performance Metrics:

Cloud Accounts: 10-30 accounts/subscriptions per SME.

Cloud Resources: 500-2,000 resources monitored.

Daily Scans: Automated CSPM scans identifying 50-200 issues.

Security Groups: 100-400 rules requiring review.

Compliance Checks: 200-500 DoD Cloud SRG controls assessed.

IaC Reviews: 20-50 templates reviewed monthly.

Cloud Projects: 5-10 migration projects supported annually. Requirements:

Clearance: Secret (NIPR), Top Secret (SIPR), or TS/SCI Eligible (JWICS) based on network assignment.

Education: Bachelor's Degree in Information Technology, Cybersecurity, Computer Science, or related field.

Experience: 10+ years information security; 5+ years cloud security experience.

Certifications: CISSP required; AWS Security Specialty, Azure Security Engineer, or CCSP highly desired.

Technical Knowledge: Expert knowledge of cloud security, CSPM platforms, DoD Cloud Computing SRG, Infrastructure-as-Code security, multi-cloud environments (AWS, Azure). About Advana:

Advana is the Department of Defense Chief Digital and Artificial Intelligence Office's (CDAO) enterprise-wide data, analytics, and AI platform. Advana provides DoD military and civilian decision makers with unprecedented access to enterprise data, tools, and capabilities in a secure environment. The platform hosts hundreds of curated applications across logistics, financial management, personnel, health, and other domains, accelerating decision advantage through accessible, actionable data and AI capabilities.

This position supports comprehensive cybersecurity operations for the Advana platform across three classified networks (NIPR, SIPR, JWICS).

Important Notes:

Position Status:

This position is contingent upon contract award.

Start date will be determined upon contract award.

We will maintain contact with selected candidates throughout the award process. Work Requirements:

U.S. Citizen required.

Clearance varies by network: Secret (NIPR), Top Secret (SIPR), or TS/SCI Eligible (JWICS).

On-premises work required at Suffolk Building, Falls Church, VA.

No remote work options available.

Standard business hours with operational flexibility. Benefits:

4 Weeks Paid Time Off.

All Federal Holiday's Paid Vacation.

Four Percent Matching 401K.

Full health/vision/dental benefits for the employee and family paid 100% by ZTI Solutions, LLC.

We thank all applicants for their interest. Only candidates selected for interviews will be contacted.

About the Company

ZTI Solutions, LLC was founded in 1997 in Virginia and is classified as a small business. The company is owned and operated by its founder, Rudy Zadnik, who emphasizes moral and business excellence over increasing company profits. This results in a more customer-oriented attitude towards mission accomplishment, as opposed to growing profits or sales.Our approach to consulting and engineering centers around using only highly skilled personnel who are seasoned industry veterans. All employees hold high-level industry and vendor certifications. We offer a comprehensive set of consulting and staff augmentation services, primarily focused on networking and security consulting in the classified space.