ANF - Security Specialist - MABSM

Alaska Northstar Federal is looking for a new Cybersecurity Specialist to join the team on a long-term project to be awarded soon. The Cybersecurity Specialist leads the implementation, monitoring, and continual improvement of cybersecurity controls and risk mitigation strategies across cloud-hosted mission systems in Oracle Cloud Infrastructure (OCI). The candidate will work in collaboration with government stakeholders, system owners, system administrators, and developers to ensure that all security requirements are met, best practices adhered to, and compliance achieved in support of DoD, DHA, and federal cybersecurity mandates.  

Responsibilities for the Security Specialist will include, but not be limited to: 

• Develop, implement, and maintain cybersecurity architecture for cloud-based and hybrid environments in Oracle Cloud Infrastructure (OCI), delivering robust security postures aligned with government cybersecurity frameworks (e.g., DoD RMF, NIST SP 800-53, and organizational policies). 
• Conduct vulnerability scans, security assessments, and penetration testing of cloud and on-premises resources, deliver actionable reports, and ensure timely remediation of identified risks and findings. 
• Oversee and support the continuous monitoring and incident response process within OCI, utilizing native and third-party cloud security, SIEM, and audit tools to detect, investigate, and resolve security events. 
• Support efforts to obtain and maintain Authority to Operate (ATO) for all assigned environments, including preparation and submission of security documentation, POA&Ms, risk assessments, and audit responses. 
• Drive the implementation and sustainment of security controls such as multi-factor authentication (MFA), encryption at-rest/in-transit, firewall rules, identity and access management (IAM) policies, Least Privilege enforcement, and boundary protections. 
• Ensure secure configuration baselines are maintained in accordance with STIGs, CIS benchmarks, and DHA-specific guidelines; perform and document regular reviews and updates. 
• Collaborate closely with systems engineers, application teams, and database administrators to ensure DevSecOps practices, secure deployment pipelines, application security reviews, and vulnerability management are fully integrated. 
• Serve as the primary responder for cybersecurity incidents, coordinating containment, eradication, and lessons-learned activities; document responses in accordance with incident response plans and government requirements. 
• Monitor cybersecurity regulatory compliance and support audits and inspections; proactively identify gaps and drive continuous process improvement in technical and procedural security controls. 
• Assist with the creation and update cybersecurity knowledge resources (e.g., SOPs, security architecture diagrams, training modules, lessons learned, SharePoint resources) to ensure optimal knowledge transfer and mission continuity. 
• Provide regular status briefings, risk summaries, and expert consultation to government leadership, program managers, and other stakeholders.   

Candidate must be a U.S. Citizen

Candidate must have an active DoD Secret Clearance 

Candidate must have a bachelor's degree

Candidate must have an active Security+ CE (or equivalent)

Candidate must have at least 4 years of experience in the following:

• Working in cybersecurity roles supporting government, DoD, DHA, or federal contracts
• Cloud-native security in Oracle Cloud Infrastructure or similar major IaaS providers. 
• Strong understanding of Secure Cloud Architecture, Identity and Access Management, encryption strategies, and vulnerability management within OCI. 
• Demonstrated proficiency with DoD RMF, NIST SP 800-53, FedRAMP, FISMA, and experience preparing and sustaining ATO packages. 
• Security monitoring and SIEM solutions (e.g., Oracle Cloud Guard, Splunk) and incident response in cloud and hybrid environments. 
• Hands-on technical skills in secure configuration of compute, network, database, and application resource.
• Automation/scripting to support compliance (e.g., with Python, PowerShell, Terraform, or Ansible). 
• Excellent oral and written communication skills for producing clear security documentation/artifacts and delivering briefings to technical and non-technical audiences.  

Desired Knowledge, Skills, Abilities

• CISSP, CISM, Security+, Oracle Cloud Security certification(s), or equivalent. 
• Experience supporting Authority to Operate (ATO) for cloud-hosted government systems. 
• Familiarity with DoD information systems security requirements and best practices. 
• Experience with multi-cloud (AWS, Azure) security operations a plus. 
• Proven history supporting DevSecOps, secure CI/CD, and automation/infrastructure as code in government environments. 

About ANF

Alaska Northstar Federal (ANF) maintains an outstanding work environment that includes competitive compensation, outstanding benefits, and challenging work assignments with opportunities for advancement/career growth. To be considered for employment opportunities you must complete an online application.

EEO Statement

ANF is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or protected veteran status. U.S. Citizenship is required for most positions. ANF is an advocate of preferential hiring and professional development of qualified Shee Atiká Inc shareholders, their spouses and descendants, and Alaska Natives in accordance with Public Law 93-638.

For further information on our equal opportunity protections as part of the employment process:

http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf

http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf

Accessibility

ANF is committed to expanding access to employment for people with disabilities and disabled veterans. If you are a qualified individual with a disability or a disabled veteran, and your disability prevents you from applying, please advise what reasonable accommodation ANF can provide to assist you in applying for one of our open positions. You may contact us by sending an email to sgs-hr@sheeatikagov.com

Reasonable accommodations are considered on a case-by-case basis. Please note that only those inquiries concerning a request for reasonable accommodation for applying for a specific posted position will be responded to. Requests will be kept confidential and shared strictly on a need-to-know basis.

Please be aware, scammers may try to impersonate our company by reaching out regarding job opportunities. We will never ask you for bank account information, checks, or other sensitive information as part of our hiring process. If you’re unsure, please email sgs-hr@sheeatikagov.com with questions.

The pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.