Back to careers
Job Essentials
  • Analytical & Problem-solving Skills
  • Application Security
  • AWS
  • Burp
  • Critical Thinking Skills
  • Seeker
  • Strong Attention to Details
  • Written and Verbal communication Skills
  • ZAP
Job Description

We prefer D.C. Metro area Candidates with U.S. Citizenship or Green Card due to the security clearance requirements on federal contracts

Areeva as a Prime contractor to the Department of Health and Human Services (HHS) is looking for a Full-time Cloud Security Engineer to oversee a large five-year government contract in an IV&V role. This is an exciting role with far-reaching impact, overseeing the financials and contract compliance requirements on a $377 Million federal contract, providing an opportunity to do highly consequential work, while aligning with some of the most talented resources within the federal government and federal contracting arena. Please go to GrantSolutions to get a better understanding of the federal organization we support.

This role will work closely with the Federal Information System Security Officer (ISSO) that helps oversee the security infrastructure for over a dozen enterprise-scale cloud-deployed (AWS) applications. The resource will assist the ISSO with the day-day operational aspects of the program to ensure compliance with the HHS Cybersecurity guidelines and assist with obtaining Authority to Operate (ATO) and with federal audits and ensuing remediation activities for any potential findings. The resource will work closely with the contractor’s security team on planning and executing the remediation activities at the behest of the ISSO, keeping the federal team appraised of progress.

  • Oversee and manage Vulnerability Continuous Diagnostics and Mitigation. Closely collaborate with Developer and Operations team and drive issue resolution.
  • Oversee application static and dynamic scanning activities in conjunction with regression testing.
  • Manage the business processes to ensure all vulnerabilities are remediated within the required 30 (Critical/High), 60 (Moderate), and 90 (Low) days.
  • Assist with obtaining ATO and preparing for the federal audit process. Create technical and managerial level reports and risk assessments for Cloud-based applications and infrastructure.
  • Assist operations team with designing external penetration testing and in monitoring the implementation of required security hardening activities (Intrusion, Baseline creation, etc.)
  • Challenge the completeness and validity of given IT management and security-specific procedures and processes with the intent to offer suggestions that enhance and improve them.
  • Attend ORR and TRR review meetings representing Security Team and report on identified release security weaknesses and their remediation status.
  • Assist Security team in supporting HHS OIG audits (A123, CFO Act), the SOC1 audit, and various agency security and compliance 'data call'.
  • Fully aware of the NIST guidelines, FISMA, and FISCAM requirements and current with security-related OMB mandates
  • The ideal candidate would have 5 years of hands-on systems experience, including architecting, deploying, and securing cloud-based environments. Experience with On-Prem to AWS Cloud Migration of enterprise-scale systems.
  • Previous hands-on experience obtaining Agency ATO and FedRAMP certifications
  • Experience with zero trust architecture model
  • 3 years of hands-on experience with Burp Suite, Zap, Seeker, and Nessus scanning tools
  • Deep technical knowledge of AWS environments is highly desired with the capability and passion for quickly learning new tools
  • Previous experience performing Penetration Testing
  • BS degree in Cyber Security or Computer Science or a related field
  • CISSP or CISM certification is a plus, so is any AWS certification
  • Excellent written and oral communication skills and attention to detail.
  • Ability to work well with senior executives, and work efficiently in a multi-team environment.
  • Must be able to obtain and maintain a Public Trust Clearance.
  • Due to federal orders, to be eligible for this role, you must be fully vaccinated against COVID-19 at the time of hire.

Areeva Solutions, LLC, founded in 2011, is a rapidly growing SBA 8(a) and SWaM certified IT Solutions and Project/Program Management consulting firm that works with several federal agencies to help streamline their business processes and develop innovative technology and management solutions to help them achieve their mission.

Areeva is a fun place to work where our employees are afforded the independence to explore, be creative, and self-manage their work. We trust our team members and firmly believe in them as being consummate professionals that are motivated to do their best work when provided the leeway to express and be creative. Being a small business, agility and swift execution is our strength. Team members have direct access to our CEO to pitch ideas as we strive to innovate and grow. We are a no bureaucracy organization with a flat org structure, a place that will truly allow you to break free and shine. With multiple government-wide contract vehicles (GWACs) available to us, we are growing and are looking for resources that see themselves growing with the organization, and have a long-term career path in mind.

We offer an excellent benefits package along with competitive base compensation. Please visit our website to review them in detail.

Areeva Solutions is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status, or any other protected characteristic under state or local law

Areeva Solutions, LLC. participates in the E-Verify program as required by law.

Note: Only ["Pdf","doc", "docx"] these extension files are allowed.