Cloud Security Engineer

About The Position

Requirements

• Must have a valid Driver’s License
• At least 4 years of progressive experience administering, designing, and engineering cloud solutions.
• Sound fundamental knowledge of cloud technology and enterprise IT systems
• Strong problem solving and troubleshooting skills with experience exercising mature judgment.
• Experience deploying resources into and running workloads in Amazon Web Services and/or Microsoft Azure
• Ability to clearly translate technical requirements and concepts in a manner that appeals to a wide audience.
• Experience working independently with minimal supervision and guidance.
• Experience with operating systems and software: upgrade planning and implementation
• Fundamental knowledge of and experience working in a DevOps centric environment
• Experience with CI/CD pipelines, automation tools, code promotion processes and methodologies
• Experience with scripting languages such as python, json, YAML or others
• Experience with deploying infrastructure as code using AWS CloudFormation templates, Azure ARM templates, Chef, Terraform or other automation tools.
• Demonstrated proficiency in vast array of Cyber Security platforms: Cloud Security Posture Management (CSPM), Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), Data Loss Prevention (DLP), Web Application Firewalls (WAF), Threat Intel, Endpoint Security
• Experience with Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (SaaS), and other cloud models
• Have a deep understanding of Cloud Security, API Security, and Container Security
• Bachelor’s Degree in related-field or equivalent experience plus 5-10 years of hands-on experience.
• DOD Top Secret Clearance Required

Responsibilities

• Review and technical inspection of cloud systems, identifying and mitigating potential security weaknesses, and ensuring system functionality.
• Work autonomously in an area of cloud security monitoring to analyze overall security posture and provide relevant information to internal and external stakeholders.
• Work with assigned system stakeholders to understand their cloud infrastructure to adequately support the mission.
• Assist with the implementation of monitoring capabilities for various audiences – developers, business owners, security, and infrastructure; analyze all platform level, network changes and monitor impact and provide appropriate technical solutions to resolve issues efficiently; evaluate and document operating baseline according to required standards.
• Utilize in-depth knowledge of infrastructure components (VM’s, Security Products, Network ports and protocols, Databases, Middleware, and open-source code) to support DevOps in an enterprise environment to build, maintain and sustain an enterprise information technology DevOps operational model.
• The staff shall have skill sets to perform computer incident response and remediation practices as outlined in NIST 800-61 (Computer Security Incident Handling Guide) and DHS 4300A Sensitive Systems Policy Handbook, Attachment F Incident Response
• Perform other duties as assigned by the Government.

Benefits

• health insurance
• dental insurance
• vision insurance
• 401K with company matching
• flexible spending accounts
• paid holidays
• three weeks paid time off