Sr Cloud & Security Engineer

About The Position

Requirements

• At least an associate’s degree in computer science, Information Technology, or related field
• At least 5-7 years of experience in IT as a practitioner
• At least 2-3 years exposure to Amazon Web Services, Microsoft Azure, and/or VMWare.
• Experience managing perimeter security products, such as secure web gateway (SWG) and cloud access security broker (CASB) like Netskope and Zscaler, secure email gateway (SEG) solutions like Microsoft and IronPort, and web application firewall (WAF) like Imperva, F5.
• Experience with data at rest and motion data loss prevention tools (DLP), on endpoints as well as on point products like CASB and SEG.
• Experience with antimalware tools like Windows Defender, CrowdStrike.
• Experience with vulnerability management platforms like Rapid7, Qualys, Tenable.
• Experience with SIEM platforms like LogRhythm, Rapid7, and managing integrations as well as alerts.
• Expertise with Microsoft Intune, including MAM, conditional access.
• Experience writing technical documentation.

Responsibilities

• Develop and maintain secure, resilient enterprise-grade cloud processes in tandem with architects and system engineers, such as zero-trust security architectures, defense-in-depth design patterns, and enforcing least-privilege.
• Secure business applications and computing environments across public, private or hybrid cloud infrastructures, enabling the business operators to work effectively and safely.
• Deploy strong identity and access management (IDAM) controls across applications and computing environments.
• Assist in the day-to-day implementation, monitoring and operational support of hardware, software, customer applications, managed solutions and service provider relationships. This may include but not be limited to: email gateway, secure web gateway/CASB, DLP, SIEM, Disaster Recovery, and antimalware solutions.
• Maintain a consistent, secure environment, using or implementing automation where possible. Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
• Protect business applications in compliance with privacy, security, business resiliency and compliance frameworks as defined in corporate policies.
• Attend regular technical project and implementation meetings, and serve as the security consultant to help guide secure application and infrastructure configurations.
• Assist in the assessment, development, design, and implementation of secure AI tools and technologies across the organization.
• Act as a key figure in incident response to track occurrence and resolution, with strict documentation and reporting as well as engagement with security operations and incident response teams.
• Actively monitor, assess and recommend tactical and strategic initiatives based on new and emerging threats posing risk to (cloud computing) environments.
• Manage remediation efforts after security assessment findings outline weaknesses requiring attention.
• Drive security efficiencies, through automation and adoption of advanced capabilities.