About the roleGAMA-1 is seeking a remote Cloud Security Specialist IV focused on AWS security operations, IAM, incident response, vulnerability management, and compliance in regulated environments. In partnership with the ISSO, this role is responsible for the overall protection of the enterprise cloud environment, ensuring data security and regulatory compliance while implementing best practices for access control, encryption, and threat mitigation.The Cloud Security Specialist IV collaborates with engineering and operations teams to secure systems, support audits and compliance efforts, and drive effective security across AWS environments.What You Will Do in This RoleThe Cloud Security Specialist IV is responsible for leading AWS security operations, managing enterprise security controls and IAM, driving incident response and compliance, and serving as the SME and customer point of contact to ensure secure, resilient, and well-governed cloud environments.Responsibilities include:Serve as the Cloud Security SME and primary customer point of contactOperate and monitor security controls across enterprise IT systems to support security operationsLead cloud security operations in AWS (e.g., WAF, GuardDuty, Macie, CloudTrail, CloudWatch, Control Tower), ensuring effective detection, response, and governancePerform security monitoring, incident response, and digital forensics using SIEM toolsDirect and influence multi-disciplinary teams in the implementation and operation of cybersecurity controls across the enterpriseCollaborate with application developers and database administrators to deliver innovative solutions to complex technology challenges and business requirementsProvide subject matter expertise on information security architecture and systems engineering to IT and business stakeholdersDrive automation of security controls, data, and processes to enhance metrics, visibility, and operational efficiencyImplement and manage IAM solutions (ForgeRock, SailPoint, SSO, provisioning, lifecycle management) to ensure secure and effective access governanceAssess risks and vulnerabilities and implement appropriate mitigation strategiesSupport audits, compliance activities, and execution of the security roadmap to ensure regulatory alignment and continuous improvementWhat You Will BringRequired Qualifications8+ years of experience securing enterprise or mission-critical systems in regulated or government environments5+ years of hands-on security operations experience, including monitoring, detection, and response4+ years of AWS cloud security experience in production environments4+ years of Windows and Linux security administration in enterprise environmentsExperience developing and enhancing security compliance reporting (e.g., AWS Security Hub, CloudTrail)Demonstrated experience identifying, mitigating, and managing vulnerabilitiesExperience supporting incident response activities and working with SIEM platformsPreferred QualificationsExperience with IAM integrations (Active Directory, LDAP, enterprise databases), SSO, and identity lifecycle managementWorking knowledge of federal security frameworks and standards, including NIST 800-37/53, IRS 1075, and MARS-EExperience with vulnerability management, penetration testing, and enterprise firewall administrationScripting experience in Java, JavaScript, or shell scriptingWork authorization/security clearance requirementsAbility to obtain a security clearanceWork EnvironmentThis work is normally completed in a remote environmentPhysical DemandsProlonged periods of sitting at a desk and working on a computerMust be able to access and navigate each department at the organization's and client facilitiesTravel RequiredNoProficiency RequirementThe employee is expected to demonstrate proficiency in all essential job functions, tools, and processes related to this position within the first 90 days of employment. This includes acquiring a thorough understanding of job-specific responsibilities, systems, and workflows as outlined during onboarding and training. Failure to meet this requirement may result in additional training, reassessment, or other actions as deemed necessary by management.BenefitsHealth insurance coverageLife and disability insurance401(k) savings planTraining and career development opportunitiesPaid holidaysPaid time off (PTO - to cover vacation, illness or disability, appointments, emergencies or other situations that require time off from work)About GAMA-1GAMA-1 is a rapidly growing technology business that is based in Greenbelt, Maryland. GAMA-1 Technologies provides strategic information assurance, information security, and business enterprise and networking solutions to the Federal Government. Our success is based on the utilization of industry and agency standards, establishment of standardized processes, and IT Services expertise. At GAMA-1, we believe employees should grow, achieve, and develop just as the company grows, achieves, and develops. GAMA-1 is committed to providing our employees with opportunities for career advancement throughout their employment.
