DescriptionOur client is seeking an experienced Cybersecurity Analyst to lead efforts in securing cloud-native applications and integrating strong security practices throughout the development lifecycle, ensuring it adheres to federal compliance standards. This position requires professional experience with federal cybersecurity frameworks, AWS cloud environments, and DevSecOps practices. You will collaborate closely with cross-functional teams to design, implement, and monitor security controls, automate compliance, and support federal cybersecurity operations. Location: Buffalo, NY (Must be located in the area to be considered)Duration: Direct hire/fulltimePay: Up to $120k depending on experience Key Responsibilities - Proven ability to implement RMF processes, security controls, and continuous monitoring to achieve and maintain ATO- Experience with DoD Cyber Security Frameworks as defined by NIST and FedRAMP- Demonstrated expertise with AWS and Network policies, Pod security policies, Container security- Hands-on experience with STIG checklists and eMASS including CCI documentation- Proven track record of improving DHA and DISA operational efficiency in an agile tech environment- Strong technical background with multiple Application Security Tools (SAST, DAST, SCA) and the integration into the SDLC via CI Automation and Integration- Strong knowledge of containers and deployment of containerized applications/microservices architectures- Familiarity with automating tasks in Cloud Infrastructure with serverless technologies and know how event-driven patterns are constructed- Hands-on experience with CI/CD tools such as GitHub Actions & Jenkins for security deployment automation- Familiarity with threat modelling and security design review methodologiesJob RequirementsRequired Skills / Qualifications:- 5+ years of hands-on experience in cybersecurity and federal security compliance including use of their security tooling- Proficient in scripting languages (Python, Bash, or similar) and experience with RESTful APIs- Experience with modern source code management and software repository systems e.g. Visual Studio, Git/GitHub, etc- Through understanding of base Cloud Infrastructure constructs - Virtual Private Cloud, Subnets, Security Groups and 3-tier application architecture- Deep understanding of the fundamentals of security at multiple layers of abstraction, from operating systems to applications- Strong advocate for automation-first approaches and a passion for driving innovation in secure software developmentPreferred Skills / Qualifications: Aleron companies (Acara Solutions, Aleron Shared Resources, Broadleaf Results, Lume Strategies, TalentRise, Viaduct) are an Equal Opportunity Employer. Race/Color/Gender/Religion/National Origin/Disability/Veteran. Applicants for this position must be legally authorized to work in the United States. This position does not meet the employment requirements for individuals with F-1 OPT STEM work authorization status.Apply Aleron companies; Acara Solutions, Aleron Shared Resources, Broadleaf Results, Lume Strategies, Viaduct, and Aleron's strategic partner, SDI are Equal Employment Opportunity and Affirmative Action Employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity, sexual orientation, national origin, genetic information, sex, age, disability, veteran status, or any other legally protected basis.
CLZUU DOMUU SK111 SK222 SK333 SK444 SK555 SK666
