[Remote] Senior Cloud Cybersecurity Analyst
Note: The job is a remote job and is open to candidates in USA. Grant Leading Technology is seeking a candidate for Senior Cloud Cybersecurity Analyst to join our dynamic team. The candidate will play a critical role in securing the Internal Revenue Service's next-generation Enterprise Data Platform (EDP) as part of the IRS modernization initiative, supporting the design, implementation, assessment, and continuous monitoring of cloud-native security controls.
Responsibilities
- Design, implement, and maintain security controls across cloud environments including AWS, Azure, and hybrid cloud architectures
- Evaluate cloud services and architectures against federal cybersecurity standards and IRS security requirements
- Support secure migration of legacy data platforms and applications into modern cloud environments
- Implement Zero Trust Architecture (ZTA) principles and cloud-native security capabilities
- Ensure compliance with federal mandates including:
- FISMA
- NIST Risk Management Framework (RMF)
- NIST SP 800-53 Rev. 5
- NIST SP 800-207 (Zero Trust)
- FedRAMP
- IRS Publication 1075
- Develop and maintain System Security Plans (SSPs), Security Assessment Reports (SARs), Plan of Action and Milestones (POA&Ms), and Authority to Operate (ATO) documentation
- Support security control assessments and continuous authorization activities
- Monitor and analyze cloud security events, logs, and alerts
- Investigate cybersecurity incidents and coordinate response activities
- Implement and optimize cloud security monitoring solutions, SIEM integrations, and threat detection capabilities
- Conduct vulnerability assessments, security reviews, and remediation tracking
- Develop strategies for protecting sensitive taxpayer and financial information
- Implement encryption, tokenization, data masking, and key management solutions
- Ensure secure data ingestion, storage, processing, and sharing across enterprise data environments
- Support data governance and privacy requirements
- Embed security controls into CI/CD pipelines and Infrastructure-as-Code (IaC) deployments
- Automate security testing, compliance validation, and vulnerability management processes
- Collaborate with development and engineering teams to implement secure coding and deployment practices
Skills
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related field
- Minimum of eight (8) years of cybersecurity experience
- Minimum of five (5) years securing cloud environments supporting federal or highly regulated organizations
- Strong understanding of cloud-native security services and architectures
- Experience with vulnerability management, security assessments, and incident response
- Experience with enterprise logging, SIEM, and cloud security monitoring tools
- Strong written and verbal communication skills
- AWS Security Services (IAM, GuardDuty, Security Hub, KMS, CloudTrail)
- Microsoft Azure Security Services (Defender for Cloud, Sentinel, Key Vault)
- Cloud Access Security Broker (CASB) technologies
- Identity and Access Management (IAM)
- Multi-Factor Authentication (MFA)
- Security Information and Event Management (SIEM)
- Infrastructure as Code (Terraform, CloudFormation, ARM/Bicep)
- Container Security (Docker, Kubernetes)
- DevSecOps tools and practices
- Vulnerability Management Platforms
- Data Loss Prevention (DLP)
- Encryption and Key Management Systems
- Must be able to pass a Minimum Background Investigation (MBI) background check
- Must live in the United States and be authorized to work in the United States
- Experience supporting IRS, Treasury, or other federal civilian agencies
- Experience securing large-scale enterprise data lakes, data warehouses, or analytics platforms
- Experience with AI/ML security and governance frameworks
- Experience implementing Zero Trust Architecture in cloud environments
- Knowledge of taxpayer data protection requirements and IRS Publication 1075 controls
- One or more of the following certifications:
- CISSP (Certified Information Systems Security Professional)
- CCSP (Certified Cloud Security Professional)
- AWS Certified Security – Specialty
- AWS Solutions Architect Professional
- Microsoft Certified: Azure Security Engineer Associate
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- GIAC Cloud Security Certifications
- Certified Authorization Professional (CAP)
Benefits
- Our base healthcare plan is 100% employer paid
- Our 401k plan is immediately vested
- We also offer paid time off
- 11 federal holidays
- Short/long-term disability
- 401k matching
- Opportunities for professional development
Company Overview