SOSi is seeking a Security & Compliance Administrator to support mission requirements for a structured approach to further develop, integrate, and sustain a scalable, federated data ecosystem that enhances interoperability, governance, and mission-driven analytics for a DoD customer. The primary objective of the program is to bridge the operational gaps between DoD, IC, interagency, and non-traditional international partners to enable real-time information sharing, dynamic data integration, and mission-tailored analytical capabilities.
Essential Job Duties:
- The contractor shall monitor and validate Kubernetes and data lake deployments for compliance with RMF, NIST 800-53, and DoD IL4/IL5 requirements, in collaboration with agency cybersecurity teams.
- The contractor shall maintain continuous monitoring dashboards and conduct vulnerability scans of deployed infrastructure and workloads, supporting the agency鈥檚 ATO process and risk posture.
- The contractor shall prepare and update system security documentation鈥攊ncluding SSPs, SARs, POA&Ms鈥攖o reflect changes to architecture, controls, or risk conditions under other work orders.
- The contractor shall enforce encryption, logging, and identity access policies (IAM, RBAC, audit logging) to maintain traceability and accountability across the Kubernetes-based data layer.
- The contractor shall submit the Security & Compliance Assessment Report, providing a summary of control effectiveness, findings, and recommended remediation actions.