Back to jobs
Job Description
- Ensure in-scope Google Cloud information systems meet government of Canada requirements to obtain and maintain Authorization to Operate (ATO).
- Own the comprehensive security assessment and authorization (SA&A) lifecycle, including the security requirements traceability matrix (SRTM) system security plan (SSP), security assessment reports (SAR) and any other documentation required to maintain ongoing security authorization.
- Manage the plan of action and milestones (POA&M) to track and remediate vulnerabilities identified during the security assessment process.
- Lead initiatives to leverage Artificial Intelligence (AI) and automation to scale the security assessment and authorization (SA&A) process, identify opportunities to reduce operational toil in evidence collection and control mapping.