Systems Security Specialist

About the Role:

ANGARAI – a professional management consulting firm – is seeking a Systems Security Specialist to support a key government client in ensuring the security, compliance, and resiliency of its IT infrastructure. The ideal candidate will have hands-on experience in cloud and application security, Identity and Access Management (IAM), incident response, and system governance for mission-critical systems.

Key Responsibilities:

• Develop and implement cloud security controls, processes, and automation tools (AWS/Azure).
  

• Conduct system-wide security assessments and cloud penetration testing.
  

• Monitor cloud and on-prem systems, identify security vulnerabilities, and provide remediation.
  

• Perform incident response and forensic evaluations using SIEM tools.
  

• Support the secure design and implementation of applications across the SDLC.
  

• Maintain and update security documentation including Security Plans, POA&Ms, Risk Assessments, and more.
  

• Manage and maintain IAM solutions including ForgeRock and SailPoint.
  

• Perform account provisioning, access reviews, and implement role-based access control.
  

• Configure and manage firewalls and access controls (e.g., AWS Security Groups, WAF).
  

• Evaluate proposed changes for security impacts and maintain secure configuration baselines.
  

• Comply with applicable NIST, IRS 1075, MARS-e, and other federal/state standards.
  

Requirements

Required Qualifications:

• 2+ years of experience in security operations, governance, and compliance.
  

• Proven hands-on experience with cloud security (AWS preferred).
  

• Experience with SIEM, incident response, and forensics.
  

• Knowledge of AWS security features: GuardDuty, Macie, CloudTrail, CloudWatch, etc.
  

• Experience with administering and monitoring IAM tools and performing user access control tasks.
  

• Hands-on experience with Windows and Linux OS security administration.
  

• Familiarity with federal security frameworks such as NIST SP 800-53.

Preferred Qualifications:

• 4+ years experience with ForgeRock and SailPoint IAM products.
  

• Strong experience performing penetration testing and vulnerability assessments.
  

• Familiarity with ACL configuration, password policies, and group management in enterprise environments.
  

• Scripting experience (Java, JavaScript, Shell).
  

• Experience configuring ASA or Fortinet firewalls.
  

• Prior experience working in a government agency or regulated environment.
  

• Experience supporting PMO governance and compliance processes.

Certifications (Preferred):

• CISSP, CISA, CCSP, CEH, ISO 27001, CSA STAR Cloud Security, or equivalent.