Cloud Security Specialist

Since 1996, Networking For Future, Inc. (NFF) has been engineering the backbone of mission-critical systems for government and enterprise clients. With headquarters in Washington, DC, we provide expert technology consulting and design-build solutions that solve complex challenges and deliver measurable real-world results.

NFF is an ISO 27001:2022 and ISO 9001:2015 certified company. Our expertise includes solutions for Artificial Intelligence Enablement, Data Center & Cloud, Intelligent Networks, Secure, Connected IoT Technologies, Professional and Managed Services, Workforce Solutions and Zero Trust Strategies. NFF leverages a strategic portfolio of over 200 industry-leading technology brands to deliver precisely tailored solutions that align with each client's unique requirements and mission objectives.

NFF is a Cisco Gold Integrator Partner, Splunk Partner, Arista Partner, Cohesity Partner, Apptega Partner, NetApp Gold Partner, VMware Enterprise Partner, Alloterra Labs Partner, Axis Communications Partner, Asimily Partner, Signify Partner, Rapid7 Partner, Foresite Partner, Arctic Wolf Partner, Microsoft Certified Silver Partner, and Dell Solution Provider Partner.

NFF also holds GSA Schedule 47QTCA21D0047 and many other government contract vehicles.

We are seeking a Senior Cloud Security Specialist to support the Security Engineering team within the IT division at NFF Inc. This team is responsible for the strategy, design, deployment, and maintenance of effective security solutions in cloud, local, and hybrid environments.

The candidate shall also demonstrate the knowledge and experience below:

Required Experience:

• Extensive REST API experience specifically in implementing, securing, automating, testing, and documenting API integrations.
• Strong understanding of resilient integration patterns including error handling, retry mechanisms, and monitoring strategies
• Proficient in scripting and automation languages for security orchestration
• Prefer experience with integrations between ServiceNow, Collibra, and Saviynt
• Experience implementing cloud-native serverless architectures and services
• Experience architecting and implementing security controls across public cloud platforms
• Experience implementing DevSecOps practices including continuous integration/deployment pipelines and infrastructure as code methodologies
• Experience implementing cloud access security broker (CASB) solutions for SaaS application security and visibility
• Strong understanding of security concepts and technologies related to Identity and Access Management (IAM), security engineering, network security design, security operations, security architecture, general engineering processes, cloud security, data loss protection, zero trust, DevSecOps and vulnerability management.
• Demonstrated federal experience and comprehensive knowledge in adopting and implementing federal cybersecurity requirements, including but not limited to the NIST Cybersecurity Framework, OMB Memorandum M-22-09, NIST SP 800-53
• Possess deep analytical, problem-solving, and troubleshooting experience, to independently resolve complex security challenges.
• Proven ability to provide technical security consultation and advisory services with a proactive approach to identifying potential issues, raising Questions, and engaging in open dialogue with team members and stakeholders to ensure security objectives are met.
• The Consultant shall deliver, but not limited to, the following:
  • API integration architecture document detailing out the integrations between cloud systems.
  • Data model and attribute mapping across cloud systems.
  • Automation scripts and orchestration (serverless functions, scheduled jobs, event handlers)
  • Build resilient, secure API integrations between cloud applications in support of an endto-end data access management solution.
  • Comprehensive testing and documentation of cloud integrations
  • Support data loss prevention and cloud access security broker cloud initiatives
  • Work across multiple teams as a Cloud Security Engineer SME to support security design, build, implementation, and monitoring of cloud platforms, applications, and tools.
  • Offer technical consultation to cloud engineering teams on secure implementations
  • Create or update security configuration guides and playbooks

Preferred Qualifications:

• AWS Certified Security - Specialty (strongly preferred)
• AWS Certified Solutions Architect - Professional or Associate

NFF offers a competitive salary, comprehensive benefits and flexible paid time off options, for eligible employees:

• Medical, Dental and Vision, Health Savings Account, Flexible Spending Account
• STD, LTD, Supplemental life insurance and ADD&D
• Comprehensive 401k plan
• Paid Time Off

NFF is an Equal Opportunity Employer.

Important Notice: All NFF Inc communications come from @nffinc.com. Emails from other domains claiming to be NFF are likely scams. Be cautious, verify senders, and report suspicious messages immediately.