Cloud Cybersecurity Specialist

Key Responsibilities

• Provide platform-wide security oversight and serve as the primary security liaison with Federal employees and IRS security teams.
• Ensure continuous compliance with IRS/Treasury cybersecurity policies, NIST frameworks, and FedRAMP High requirements.
• Conduct continuous risk assessments and document security findings in Plan of Action and Milestones (POA&M) processes.
• Manage the POA&M lifecycle: identify, track, remediate, and close security weaknesses within defined timelines.
• Identify and remediate security vulnerabilities across cloud infrastructure, applications, and data layers.
• Design, implement, and validate security controls across AWS and Databricks environments.
• Coordinate Authority to Operate (ATO) activities, including System Security Plans (SSP) and security assessments.
• Conduct security reviews of architecture changes and new service integrations.
• Develop and maintain security documentation including policies, procedures, and incident response plans.
• Support security audits and provide evidence packages for compliance reviews.

Required Qualifications & Skills

• 5+ years of experience working within FedRAMP High environments.
• Deep knowledge of NIST SP 800-53, FedRAMP, FISMA, and federal cybersecurity frameworks.
• Hands-on experience with POA&M management tools and processes.
• Strong understanding of AWS security services (AWS Security Hub, GuardDuty, CloudTrail, IAM, KMS).
• Experience with security assessment and authorization (SA&A) processes.
• Familiarity with IRS/Treasury cybersecurity policies is highly preferred.
• Experience with vulnerability scanning tools and remediation processes.
• AWS Certified Security Specialty or equivalent certification preferred.
• CISSP, CISM, or equivalent cybersecurity certification highly preferred.
• Knowledge of tax-processing systems or federal financial data environments preferred.