Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cloud Security & Compliance Specialist (15.43)

$90k - $110k

OCT Consulting, LLC

Job Description

Job Description

OCT Consulting is a business management and technology consulting firm that supports Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.

OCT currently has an opening for a Cloud Security & Compliance Specialist to support a federal client. The specialist will support the ISSO/SSPO with cloud security operations, FedRAMP-related support activities, and information security compliance for cloud-hosted and modernized IT environments.

This position is contingent upon contract award .

Day-to-day responsibilities include:

  • Support client cloud migration efforts and IT modernization initiatives from an information security governance perspective, ensuring alignment with existing cloud architectures (AWS, Azure) and EPLC requirements.
  • Assist in cloud security operations including FedRAMP-related SA&A support, continuous monitoring, and maintaining security authorizations for cloud-hosted and FedRAMP-aligned systems.
  • Conduct vulnerability and compliance reporting: analyze scan results, identify critical/high vulnerabilities, and provide actionable remediation recommendations; submit monthly reports to the COR.
  • Support POA&M development, tracking, and monthly updates for cloud-hosted and contractor-hosted systems; ensure all findings are tracked and reflect current remediation status.
  • Assist with Security Assessment and Authorization (SA&A) package development and coordination including SSPs, RARs, POA&Ms, Contingency Plans, and E-Authentication assessments.
  • Support compliance with FedRAMP security control baselines, NIST SP 800-53, FISMA, OMB Circular A-130, and applicable agency cloud security policies.
  • Assist in reviewing and validating ISSO intranet content and security resources; prepare intranet content review reports.
  • Develop and maintain the Security Authorization Boundary Inventory & Strategy Report, assessing system inventory and recommending optimized authorization boundaries.
  • Participate in EPLC security reviews and IT acquisition security reviews related to cloud-based solutions and modernization efforts.
  • Prepare ad hoc technical support deliverables for cloud migration support, acquisition security reviews, and other RMF-related activities as requested.
  • Support development and maintenance of security training materials for client staff and stakeholders; assist with training delivery as needed.
  • Ensure HSPD-12/PIV requirements, FIPS 140-2 encryption standards, and CUI handling requirements are met across cloud-operated systems.
  • Maintain compliance with all agency security training requirements including annual Security Awareness Training (SAT) and role-based training (RBT).

Requirements

  • Must be a U.S. Citizen.
  • Minimum of 3–5 years of experience in cloud security, federal information security compliance, or cybersecurity operations.
  • Demonstrated experience with cloud security governance, cloud migration security support, and/or FedRAMP-related activities.
  • Experience with NIST SP 800-53, 800-37, and FedRAMP security control baselines.
  • Experience performing vulnerability management, compliance scanning, and POA&M tracking in federal environments.
  • Familiarity with SCAP-compliant automated tools for vulnerability scanning, configuration management, and asset management.
  • Experience with Governance, Risk, and Compliance (GRC) platforms such as Archer or comparable tools.
  • Strong technical writing skills sufficient to independently produce clear, accurate, and professionally formatted security and compliance documentation.
  • Bachelor's degree in Information Technology, Cybersecurity, Computer Science, Cloud Computing, or a related field (or equivalent work experience).
  • Ability to obtain a Public Trust (Moderate Risk – Level 5 or higher) background investigation; an HSPD-12/PIV card will be required for facility and network access.
  • Work will be performed primarily at the agency facility in Hyattsville, MD, with authorized telework on a situational basis. Must be able to commute to the Hyattsville, MD location.

Preferred Qualifications:

  • Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), Certified Authorization Professional (CAP), or equivalent certification.
  • Experience supporting HHS or other Federal civilian agency cloud environments (AWS GovCloud, Azure Government).
  • Experience with FedRAMP third-party assessment organization (3PAO) processes or JAB authorization activities.
  • Familiarity with CIPSEA requirements, Privacy Act compliance, and handling of sensitive federal health statistics data.
  • Experience with EPLC security reviews and federal IT acquisition security processes.

Benefits

OCT offers competitive compensation packages and a full suite of benefits which includes:

  • Medical, Dental, and Vision insurance
  • Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee's gross salary
  • Paid Time Off and Standard Government Holidays
  • Life Insurance, Short- and Long-Term disability benefits
  • Training Benefits

Salary Range: $90,000 – $110,000 yearly commensurate with experience, education, and qualifications.

About OCT Consulting

OCT Consulting LLC is a Small Business (SB) providing professional services and information technology solutions to the Federal government and commercial clients. Founded in 2013, we bring the agility of operations and a management team with a track record of leading successful engagements at major Federal government agencies.

At OCT we believe in creating a work environment where employees can thrive based on their abilities, skills, and achievements. We are dedicated to providing career growth and professional development based on individual merit and fostering a workplace where everyone's contributions are valued and recognized.

Vacancy posted a month ago
Similar jobs that could be interesting for youBased on the Cloud Security & Compliance Specialist (15.43) in Hyattsville, MD vacancy
  •  ...CFM Partners GRC, Inc. as a Regulatory Compliance Specialist - Content & Product. In this dynamic...  ...financial services professionals in the securities industry. This role focuses on...  ...solutions since 1995. Our practical, cloud-based tools combine deep industry insight... 
    Cloud
    Work from home
    Flexible hours

    CFM Partners GRC, Inc.

    Washington DC
    2 days ago
  • $78.9k - $123.3k

     ...detail-oriented cybersecurity compliance professional to support system...  ...responsible for managing the security authorization lifecycle for one...  ...School degree with a total of 15 years of experience in cybersecurity...  ...(GRC) platforms. Knowledge of cloud security compliance, Zero... 
    Cloud
    Permanent employment
    Full time
    Part time
    Work at office
    Local area
    Remote work

    Noblis

    Washington DC
    2 days ago
  • $140k - $180k

     ...Security, Risk and Compliance Consultant Washington, District of Columbia, United States Who We Look For An SEI-er is a master communicator and active...  ...Access Management, Business Continuity and Resiliency, Cloud Knowledge of and/or application of industry specific... 
    Cloud
    Permanent employment

    SEI

    Washington DC
    1 day ago
  • $90k - $110k

     ...analyst will support the Information Systems Security Officer / Systems Security and Privacy...  ...Risk Management Framework (RMF) compliance, Security Assessment and Authorization (...  ...CIPSEA obligations, IT modernization, and cloud migration efforts. Support Security Assessment... 
    Cloud
    Contract work
    Temporary work
    For contractors
    Work experience placement
    Remote work

    OCT CONSULTING LLC

    Hyattsville, MD
    3 days ago
  •  ...provides innovative information technology, cybersecurity, and cloud support services to the Federal Government. We support...  ...in everything we do. About the Information Security Compliance Specialist position We are looking for a talented cybersecurity professional... 
    Cloud
    Full time
    Flexible hours

    Tactibit Technologies LLC

    Suitland, MD
    4 days ago
  • Sr. Security & Compliance Specialist - TS Clearance Full-time SVD Solutions is focused on providing comprehensive Information Security/Assurance advisory services to Senior Executives of government and commercial organizations. We are an intelligence-driven management... 
    Full time
    Work experience placement
    Work at office
    Immediate start
    Remote work

    SVD Solutions

    Washington DC
    3 days ago
  • Information Assurance (IA) / Security Compliance Specialist This position is in anticipation of contract award and is contingent upon successful contract award. Applicants will be contacted regarding employment opportunities upon award notification. 5+ years Federal IA... 
    Contract work

    Blue Rose Consulting Group

    Washington DC
    3 days ago
  • $135k - $182.1k

     ...Overview Global Information Security (GIS) is responsible for protecting...  ...meet increasingly rigorous compliance requirements. Role...  ...and Access Management (IAM) Specialist to lead access provisioning initiatives...  ...IAM processes across cloud services. This is a hands-on... 
    Cloud
    Work at office
    Shift work
    Day shift

    Koitecc Solutions

    Washington DC
    4 days ago
  • $2,000 per month

     ...accelerate the results that matter. By taking advantage of all structured and unstructured data securing and protecting private information more effectively Elastic's complete, cloud-based solutions for search, security, and observability help organizations deliver on the... 
    Cloud
    Local area
    Flexible hours

    Elastic

    Washington DC
    5 days ago
  • $55 - $70 per hour

     ...hour Responsibilities Conduct network security appliance cutover operations on-site at...  ...security. As a Palo Alto Networks Security Specialist, you will play a crucial role in...  ...complications. Experience with leading cloud service providers (AWS, GCP, Azure) is a... 
    Cloud
    Hourly pay
    Contract work

    Novacoast

    Washington DC
    6 days ago
  • $116k - $170k

     ...Security Sales Specialist II The Google Cloud Platform team helps customers transform and build what's next for their business all with technology built in the cloud. Our products are developed for security, reliability and scalability, running the full stack from... 
    Cloud

    Google

    Washington DC
    2 days ago
  • $100k - $150k

    T-Rex Solutions, LLC is seeking a Cloud Network Engineer to support the US Department of the Treasury. This role focuses on implementing...  ...skills in cloud technologies, including Terraform and AWS security. The position offers a salary between $100,000 and $150,000, along... 
    Cloud

    T-Rex Solutions, LLC

    Washington DC
    6 days ago
  • TEKsystems is seeking a Cloud Security Analyst to execute governance activities across multi-cloud environments. The role focuses on ensuring cloud solutions align with enterprise standards and requires collaboration with various teams to identify and remediate risks.... 
    Cloud
    Hourly pay

    TEKsystems

    Washington DC
    2 days ago
  • $129.99k - $149.48k

     ...cybersecurity controls, risk management, and compliance helps organizations securely deliver impactful services?...  ...seeking 2 highly skilled Security Specialists to support our client’s mission by...  ...Experience embedding security into cloud, platform, or DevSecOps pipelines early... 
    Cloud
    Full time
    Work at office
    Remote work
    Flexible hours

    Ripple Effect

    Bethesda, MD
    5 days ago
  • Role Summary Sr. Cloud Security Specialist (AWS) - Washington, DC (Onsite) - 6+ month contract (possible to extend). Support the Security Engineering...  ...-as-code against security standards Review and validate compliance with security policies and best practices Assess... 
    Cloud
    Contract work
    Local area

    The Evolvers Group

    Washington DC
    6 days ago
  • $144k - $209k

     ...Time Off: 20 days of vacation per year, accruing at a rate of 6.15 hours per pay period for the first five years of employment Sick...  ...models are integrated into clinical settings. Familiarity with Cloud-native Quality Management Systems (ISO 13485) and AI-specific quality... 
    Cloud
    Temporary work
    Shift work

    Google

    Washington DC
    6 days ago
  •  ...Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role...  ...directly with clients to assess their security posture, develop policies, and guide them...  ...services industry experience + Knowledge of cloud compliance (FedRAMP, SOC 2 for SaaS) +... 
    Cloud
    Full time
    Remote work

    Districttechgroup

    Washington DC
    1 day ago
  • $45 - $58 per hour

    Apex Systems is seeking a Personnel Security Specialist in Rosslyn, VA to manage security processes within a dynamic environment. The ideal candidate will create standard operating procedures and ensure meticulous process execution. This role requires a Bachelor's degree... 

    Apex Systems

    Arlington, VA
    5 days ago
  • $100k

    Description Do you specialize in securing classified networks at the physical layer? Are you an expert in CNSSI 7003 and hardened...  ...IT six years running, and we are seeking a PDS Security Compliance/Inspection Specialist who will play an instrumental role in the design,... 

    Johns Hopkins Applied Physics Lab

    Laurel, MD
    5 days ago
  • $94.43k - $202.75k

     ..., were able to harness the potential of Cloud, AI, ML, IoT, 5G, and quantum computing...  ...working knowledge of topics such as data security, messaging patterns, ELT, Data wrangling...  ...contains further information regarding KPMG's compliance with federal, state and local... 
    Cloud
    Full time
    Local area
    Visa sponsorship

    KPMG

    Washington DC
    9 days ago
  •  ...Paid time off Vision insurance Overview We are hiring a Security & Compliance Analyst to support multiple client environments with a focus...  ...environment Familiarity with MDR, SIEM, vulnerability scanning, and cloud security platforms Experience supporting tabletop exercises... 
    Cloud
    Work from home
    Flexible hours

    Managed IT & Security Provider

    Alexandria, VA
    2 days ago
  •  ...: Washington, DC Overtime Exempt: No Reports To: ARMADA HQ Security Clearance Required: Secret Contingent Upon Award: CONTINGENT...  ...UPON AWARD*************** Duties & Responsibilities Security Specialist I - Badging and Credentialing Specialist review and confirm scheduled... 
    Full time
    Temporary work
    For contractors
    Local area
    Relocation

    ARMADA, Ltd.

    Washington DC
    4 days ago
  • $98k - $163k

     ...Do:Guidehouse is seeking an IT Audit & Compliance professional to help our client at a large...  ...frameworks, including:NIST SP 800‑53 (security and privacy controls), NIST SP 800‑37 (RMF...  ...engineering, ISSO/ISSM, infrastructure, cloud, and application teams.Track audit... 
    Cloud
    Flexible hours

    Guidehouse

    Washington DC
    1 day ago
  • A security services provider is seeking a Security Specialist I in Washington, DC. This role involves managing badge issuance and credentialing processes, ensuring compliance with personnel security standards. Candidates should have at least two years of experience in... 
    Full time
    Relocation

    ARMADA, Ltd.

    Washington DC
    5 days ago
  • $80k - $85k

     ...logistics and stability operations, technical services and national security solutions to customers around the world. Amentum has a workforce...  ...life insurance, long-term and short-term disability insurance, 15 days of paid time off, and parental leave. Amentum is proud to... 
    Contract work
    Temporary work
    Work at office
    Local area

    PAE Government Services Inc.

    Washington DC
    2 days ago
  • $140k - $180k

    S2i2, Inc is looking for a Data Loss Prevention (DLP) Security Engineer to enhance data protection and compliance in a remote setting. The engineer will support DLP policies and cloud environments, ensuring federal security compliance and DLP program enhancements. The ideal... 
    Cloud
    Remote job

    S2i2, Inc

    Washington DC
    2 days ago
  • $111.16k - $150.39k

     ...Family: Human Resources Skills: Compliance Policies, Export Control...  ...seeking an Export Compliance Specialist to join the F-35 JPO program...  ...strike fighter. The F-35 JPO Security Directorate provides full spectrum...  ...modernization, AI/ML, Cloud, Cyber and application development... 
    Cloud
    Temporary work
    Work at office
    Immediate start
    Worldwide
    Flexible hours

    General Dynamics Information Technology

    Arlington, VA
    1 day ago
  •  ...Cloud First - Salesforce Technical Architect Client is a leader in helping organizations...  ...to ensure the delivery of highly secure solutions that are optimized for performance...  ...customer service focus (high intensity). •15+ years of consulting experience preferred... 
    Cloud
    Part time
    Local area

    ClifyX

    Washington DC
    4 days ago
  • Security Specialist I - III Lexical Intelligence provides software and services related to processing large-scale...  ...in federal information security and compliance, vulnerability assessment and risk management, and cloud and application security operations. The Security... 
    Cloud
    Contract work
    Temporary work
    For contractors
    For subcontractor
    Work at office
    Local area

    Lexical Intelligence

    Bethesda, MD
    2 days ago
  • $241.2k - $326.4k

     ...Director, Solutions Architecture – National Security, Worldwide Public SectorAmazon Web...  ...the technical depth to shape the future of cloud and AI adoption for national security.Functional...  ...Sponsorship & Customer Obsession: 15+ years of experience in IT, cloud computing... 
    Cloud
    Full time
    Worldwide
    Flexible hours

    TryApplyNow

    Arlington, VA
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cloud Security & Compliance Specialist (15.43). Be the first to apply!