Azure Cloud Security Analyst

Genera

General Description

The Azure Cloud Security Analyst position is responsible for designing and building stable cloud architecture; maintaining and updating existing systems; and maintaining and updating the secure policies and procedures associated with the environment(s). This position is also responsible for developing and delivering solutions that protect enterprise systems, applications, and data by establishing policies, practices and tools that prevent unauthorized access, use, disclosure, modification, or disruption to deliverables and/or workflow.

Bristol Alliance of Companies (Bristol Industries) is committed to building lasting relationships that reflect our hard work, ingenuity, and dedication to safety. Every employee has an impact on our success, which benefits the Native culture, land, and people of the Bristol Bay region.

Our values: People, Communities, Reputation, Teamwork, Trust, and Truth.

Essential Roles and Responsibilities:

• Adapt existing methods and procedures to create and/or maintain solutions to moderately complex CLOUD SECURITY environment(s).
• Understand the strategic direction set by Senior Managers as it relates to contractual requirements and Company/Division policies.
• Use considerable judgment to determine solutions and seeks guidance on complex problems. Primary upward interaction is with the Division Manager.
• Support and manage the Division’s internal cloud environment, including security governance (security policies and procedures), security strategy (security planning), risk (risk assessments and management), cloud data protection (classification, encryption), cloud-based identity and access management, technology/provider-specific cloud architecture (Azure, VMware, etc.) and monitoring/analytics for and in the cloud.
• Maintain knowledge on new threats, what they entail, and establish preemptive protocols.
• Look for vulnerabilities within the network, and spearhead efforts to resolve them.
• Respond swiftly and effectively to potential threats, detected threats, and network attacks.
• Implement and spearhead NIST framework, with on-going responsibilities.
• Ability to map security controls to compliance requirements for cloud environments.
• Ability to contribute content to business development/proposal efforts.
• Business development responsibilities around CLOUD SECURITY including requirements analysis, content development, and leading practices alignment.
• Conduct CLOUD SECURITY strategy, readiness, and discovery assessments.
• Oversite of overall solution costs and budgeting.
• Develop and maintain documentation that is submitted for periodic review to company and/or government.
• Deliver services that meet project quality specifications.
• Ability to take initiative to communicate, interact, and collaborate with others to ensure that all aspects of a tasks are addressed.
• Ability to quickly ramp up on new CLOUD SECURITY technologies and translate traditional and other cloud-related experience.
• Assist in the creation and delivery of IT security awareness programs for internal employees.
• Configure, install, maintain and support firewalls, end point security software, switches, operating systems and applications.
• Other duties as assigned.

Knowledge, Skills, and Abilities:

• Knowledge of CLOUD SECURITY frameworks, compliance requirements and security operations.
• Knowledge of Azure Cloud Platform.
• Knowledge of integrating Security Policies, virtual access, and controls.
• Knowledge of integrating Cyber Security technologies with existing technologies.
• Skilled at identifying security risks and exposures, determining the cause of security violations and suggests procedures to halt future incidents and improve security.
• Strong ability to assess urgency and prioritization and make good decisions based upon situational circumstances.
• Skilled in interpersonal communication with the ability to influence others.
• Skilled in Analytics and problem-solving.

Measures of Performance:

• Successful execution of projects and tasks within budget, on schedule, and in compliance with QC Requirements-(50%).
• Client satisfaction (25%).
• Completion of annual development goals (25%).

Required Qualification:

• High school diploma or GED is required.
• Bachelor’s degree in computer science, IT Security, or related field is required.
• Minimum of 1 years of technical writing and report generation.
• Minimum of 1 year of experience with NIST/CMMC compliance requirements is required.
• Minimum of 3 years of technical cyber security experience is required.
• Minimum of 3 years of working with Microsoft Azure Services Architecture is required.
• Minimum of 3 years of project leadership experience is required.
• Minimum of 1 year of preparing and/or maintaining CMMC compliance (or equivalent) for a business (federal contractor) is required.
• Minimum of 1 year experience working with Microsoft Azure Services Architecture.
• Minimum of 1 year of technical writing and report generation.
• Certification in Azure Fundamentals required.
• Certification(s) that satisfies DoD 8570.01-M IAT Level II or above is required.
• CMMC/NIST/Fed Ramp Certifications (or willing to obtain within 6 months of hire) is required is required.
• Valid driver’s license is required.

Preferred Qualifications:

• .

Work Environment:

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• This position may require close visual acuity to perform activities such as viewing a computer terminal and extensive reading.
• Position may require specific physical requirements include, but are not limited to, balancing, stooping, sitting for long periods of time, reaching, walking, lifting, talking, hearing, and performing repetitive motions.
• Position is subject to inside environmental conditions.

Physical Qualifications:
The Physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

• Mobility: Must be able to stoop, kneel, reach, walk, lift, grasp, feel, talk, hear, and perform repetitive motions.
• Hearing: Must be able to hear audible safety alarms.
• Visual Acuity: Must be adequate to perform above listed tasks in a safe manner and perform activities such as viewing a computer terminal and extensive reading. Also, possess the ability to operate motor vehicles.
• Lifting: Must be able to exert up to 20 pounds of force occasionally and up to 10 pounds of force frequently, and/or a negligible amount of force constantly to lift, carry, push, pull or otherwise move objects, including the human body.

Benefits:

Excellent salary and benefits package to include paid time off, paid holidays, comprehensive health insurance plan including medical, dental, vision, life insurance, long-term disability insurance, 401(k) plan with employer match.

Contingency

Continued employment is contingent upon being a U.S. citizen and the ability of passing security clearance, drug screen, and background check.

Equal Opportunity Employer Statement

Bristol Industries, LLC is an equal opportunity employer and offers any available positions to all, without regard to race, color, religion, sex, nation origin, age, disability, veteran status, parenthood, pregnancy, marital status, or changes in marital status, in accordance with applicable state and federal laws. This applied to recruitment, placement, pay, benefits, training, employment status changes, social and recreational programs, and other conditions and benefits of employment.

As an Alaska-Native owned company, Bristol Industries seek out and hire qualified Alaska Native and other minorities.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)