Overview

At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com.

Responsibilities

Criterion Systems is seeking an Application Security Administrator to be part of a newly awarded contract. You will work with a dynamic team of professionals that are responsible for providing Cybersecurity support to a high profile Federal Government program. You will be responsible for supporting application and cloud system security administration and sustainment and performing application and cloud system administration. 

As an Application Security Administrator you will maintain our customer’s cloud applications across multiple cloud providers. This includes application sustainment, capacity, resiliency, and recovery activities. 

• Operate, sustain, and monitor the cloud application encryption solution, including: 

• Account access
• Certificate expiration
• Encryption solution connections
• Data encryption methodology
• Encryption key rotation and lifecycle

• Encryption backups
• Deallocation of encryption material
• Conduct proactive monitoring of cloud services to ensure Service Level Agreements (SLAs) are met, including:

• Interfacing with cloud service providers (CSPs) on system changes and incidents, such as client-specific configurations and customization, and bug fixes, that prevent clients from using a cloud service.

• Troubleshooting deployment processes and remediating hosting, performance, and maintenance tasks and issues
• Providing second and third tier support, to include after normal business hour planned and unplanned outages as well as problem resolution (off-hours initial response time must be no greater than one hour from contact)
• Tracking, reviewing, assessing, and coordinating SaaS/PaaS/IaaS software, firmware, and hardware updates, upgrades, and patches
• Capturing, analyzing, and reporting on SaaS/PaaS/IaaS services performance metrics including, but not limited to, compute, storage, and license utilization
• Coordinating and communicating with impacted parties
• Conduct backups, recovery, and exports of configuration settings and system and user data.
• Coordinate with CSP to comply with EOP-defined incident reporting and response with regard to data spills, i.e., the unauthorized transfer of classified or Controlled Unclassified information, for timely data sanitization / remediation, including remediation of backup copies and forensics. 
• Conduct security monitoring of cloud services and coordinate with security and incident response analysts to investigate and address security issues, including:

• Ensure logs can be processed automatically by Government security tools

• Develop secure solutions to threats to EOP clouds, vet solutions through the Government and implement them in a timely manner to protect EOP systems and data against newly identified or emerging threats
• Enable auditing and reporting to the enterprise SIEM tool
• Assist with auditing access and propose solutions to system components that are not ingestible by the SIEM, require manual monitoring, or are associated with ongoing investigations
• Manage cloud administration to ensure compliance with FedRAMP certification guidance and report changes to the customer. In performing these support services, you will:
• Work directly with the Government, vendors, and cloud providers to assist with FedRAMP certification

• Coordinate with information assurance / application security to ensure cloud applications / services obtain and maintain authority to operate (ATO) status

Qualifications

Minimum Qualifications and Experience:  

• BA/BS Degree in Information Technology, Cybersecurity, or a related field (6 years additional experience may be substituted for a degree) 
• 4 to 7 years of related experience 

• Experience performing cloud application administration 
• Experience administering cloud application authentication systems 
• Excellent verbal and written communication skills
• DoD 8570 IAT II Certification or equivalent
• Active TS/SCI clearance 
• US Citizenship

Criterion Systems, Inc. is committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status: race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.