We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Age Solutions jobs

Cloud Security Assessor

Age Solutions
$115,000 - $125,000
United States, Maryland, Fort Meade
Apr 11, 2025
About Us
AGE Solutions is a premier technology and professional services company, providing in-depth consulting, advanced technology solutions, and essential services throughout the U.S. government, defense, and intelligence sectors. Prioritizing innovation and client-focused solutions, we assist major agencies in addressing intricate issues and ensuring a more secure future.

AGE Solutions is looking for a Cloud Security Assessor to join our team in support of an upcoming cybersecurity risk management and assessment program with our DoD customer. In this position, you will perform DoD and FedRAMP Cloud Authorization on-going support to include ConMon, annual reviews and extensions, and significant change requests (SCRs) of CSPs through reviews, recommendations, written reports, and briefings.

Individuals in this role must be available to work on-site at Ft. Meade, MD for the majority of the workweek.

Responsibilities Include:



  • Review and analyze Deviation Requests including validations or justifications for findings, Monthly One Pagers describing the cybersecurity status of Cloud Service Offerings (CSOs), Annual Assessments of mandatory and selected controls, weekly Playbooks detailing ConMon status for specific CSOs, Security Change Requests (SCRs) for new capabilities, vulnerability scan data, POA&Ms, and other updates impacting the risk posture of Cloud Service Providers (CSPs)
  • Create and maintain Monthly One Pagers and weekly Playbooks to communicate the evolving cybersecurity posture of assigned CSOs
  • Support DoD and FedRAMP monitoring programs by ensuring oversight of CSPs through a risk-based approach that provides Authorizing Officials (AOs) with actionable insights into the CSP environment's risk profile
  • Conduct recurring assessments and validations to ensure that implemented security controls meet DoD and FedRAMP compliance requirements
  • Monitor the effectiveness of system risk safeguards and security controls using a proactive, risk-based continuous monitoring strategy
  • Maintain ongoing visibility into CSP applications and devices to support risk-informed decision-making and ensure alignment with authorized risk thresholds
  • Support CSP architectural reviews to enable timely mitigation and improve situational awareness through a risk-based approach to network visibility
  • Apply integrated risk management and security assessment processes to identify and recommend corrective actions based on potential threats or weaknesses
  • Verify that CSPs perform vulnerability scans on all required controls in accordance with DoD and FedRAMP guidelines
  • Track and review monthly submissions of POA&Ms, vulnerability scans, SCRs, deviation requests, and Playbooks to ensure compliance with FedRAMP and DoD continuous monitoring requirements
  • Contribute to efforts that streamline and reduce government investment in time, cost, and resources for ConMon activities across cloud systems
  • Participate in conducting Annual Assessments in accordance with DoD and FedRAMP standards
  • Provide compliance assessments and risk analyses for CSOs in support of annual reviews, extension and change requests, and directives such as Binding Operational Directives (BODs) and Emergency Directives (EDs), including developing supporting documentation, recommendations, reports, and presentations
  • Upload all ConMon-related documentation and changes in control implementation status into eMASS or the government-designated GRC system
  • Assist with documenting and maintaining continuous monitoring standards and frameworks for ongoing use
  • Use government-specified cybersecurity tools to help ensure security compliance is maintained and monitored effectively


Requirements:



  • Bachelor's degree (IT-related field preferred)
  • Five (5) years of overall experience in cybersecurity or network security position; 2+ years supporting cloud security assessments under DoD, FedRAMP, or NIST frameworks
  • Have an active DoD Top Secret clearance with SCI eligibility
  • DoD 8570 IAM/IA Technical (IAT) Level II certification**
  • Strong understanding of RMF, NIST SP 800-53 controls, and FedRAMP ConMon requirements
  • Experience reviewing Deviation Requests, SCRs, POA&Ms, vulnerability scans, and related artifacts
  • Familiarity with creating and reviewing Playbooks, Monthly One Pagers, and Annual Assessment documentation
  • Skilled in analyzing scan data and assessing risk posture across cloud-based environments
  • Working knowledge of vulnerability scanning tools (e.g., Nessus, Qualys) and cybersecurity monitoring platforms
  • Experience with GRC systems such as eMASS for uploading and managing compliance documentation
  • Strong tech writing and comm skills to develop reports, risk summaries, and AO briefings
  • Able to prioritize tasks independently while supporting cross-functional cybersecurity efforts
  • Demonstrated ability to support architectural reviews and identify compliance or control gaps


Compensation: $115,000 - $125,000

Applied = 0
MORE JOBS LIKE THIS

(web-77f7f6d758-rjjks)