Cloud Security Consultant in Reston, Virginia at SecureIT

About SecureIT

SecureIT is a trusted and fast-growing professional services firm specializing in cybersecurity compliance advisory and assessment for cloud service providers. As an accredited Third-Party Assessment Organization (3PAO), we help clients navigate complex cybersecurity requirements and enable them to deliver secure, compliant services. What sets SecureIT apart is our combination of technical excellence, unwavering commitment to quality, and people-first culture. We value challenging work that drives professional growth, we encourage work-life integration, and we actively support community engagement.  Employees at SecureIT enjoy a collaborative environment, remote work flexibility, and direct impact on meaningful projects that shape the future of cloud security. If you’re seeking a mission-driven company where your contributions matter and your development is supported, SecureIT is the place to be. 

About the role

SecureIT is seeking a technical security consultant to drive innovation and effectiveness across our FedRAMP 3PAO assessment services. Serving as a hands-on assessor, the consultant will provide advanced technical knowledge of secure cloud architectures, networking, IAM, and encryption.

What you'll do

• Evaluating the effectiveness of security controls implemented across cloud-based environments and enterprise systems.

• Providing technical interpretation of security control applicability and system boundary scoping.

• Analyzing cloud service configurations across platforms such as AWS and Azure.

• Participating in briefings, technical interviews, security control walkthrough/observation meetings, and issue discussions.

• Preparing clear, actionable reports, risk statements, and remediation recommendations for technical and executive audiences.

• Contributing to the review of key project deliverables, ensuring clear conclusions, completeness in reporting, and alignment on high-priority security gaps.

• Identifying opportunities to automate security control testing (e.g., leveraging scripts, cloud-native tools)

• Staying current with emerging security threats and best practices for cloud-native architectures.

Qualifications

• 6+ years of experience in IT security, with at least 4 years of assessment, engineering, or demonstrated expertise in cloud security principles and best practices.

• One or more relevant certifications (e.g., CISSP, CISA, Cloud+).

• Hands on familiarity with cloud-native security tools and configurations across AWS and/or Azure.

• Good understanding of encryption standards, IAM, zero-trust, and PKI.

• Knowledge of DevSecOps, containers (Kubernetes, Docker), and Infrastructure as Code (Terraform, CloudFormation) preferred.

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity or a related discipline or equivalent years of work experience. Describe the experience and attributes of the ideal candidate