Specialist, Technology Engineer (Azure Security Engineer)

About The Position

Requirements

• Experience with Azure Cloud platforms (having AWS or OCI would be a plus)
• Technical experience in either engineering or operations of security tools
• Previous experience executing security strategies with IAM, Vulnerability Management, Data protection, Logging and Monitoring, Network Security tools, or Encryption
• Experience with implementing of CI / CD pipeline security, automation tools, and cloud provisioning tools
• Understanding of Container and/or server-less security and Code Orchestration
• Experience with Scripting and Programming (bash/sh, Python, PowerShell, Java, etc.)
• Strong interpersonal skills with demonstrated collaboration experience
• Listening, consulting, and documentation skills
• Demonstrated ability to build and mature processes and metrics
• Undergraduate studies in computer science, management information systems or a related field is preferred.
• Four years of experience with moderately complex integrated solutions and an ability to develop and modify existing solutions for specialized needs.
• Experience with automation of solution configurations deployment and with system management processes and tools.
• Experience with concepts and solutions: IaaS, PaaS, SaaS and Package Solutions.
• Strong communication skills, knowledge of planning, management and execution of Accelerated Solutions Deliver framework, Information Security acumen.
• Influencing, negotiating and priority setting is needed.

Nice To Haves

• Familiarity with security frameworks such as NIST, PCI DSS, CIS Benchmarks
• Previous experience in Architecture, Engineering, Operations, Compliance, Risk Management, or Audit role preferred
• Understanding of defensive controls (IPS, Application Firewalls, HIPS, AV, …)
• Understanding of network attack vectors and controls effective at defending network attacks
• Understanding of system attack vectors and controls effective at defending system attacks
• Understanding of log analysis tools (Splunk, or similar)
• Experience responding to audits and remediating audit items
• Deep technical experience in at least one of the following areas (Network, Server, or Desktop)
• Technology certifications or designation are not required, but encouraged (i.e.: AWS, Azure, scripting and development languages, delivery methods, security).
• Insurance/financial services industry knowledge is a plus.

Responsibilities

• Collaborate with Information Risk Management to ensure all cloud products / services are meeting configuration and compliance standards
• Promotes DevSecOps culture including training / outreach to application development teams with special focus on security controls (IAM, security compliance)
• Design, build, and/or deploy tools and reports that provide visibility into cloud accounts, instances, and services
• Stay current on cloud security vulnerabilities, policies, standards, regulations to ensure cloud environments are managing risk appropriately
• Continuously work with business partners on vulnerability remediation strategies
• Partner with security teams to enhance cloud security solutions and establish preventative controls to support security needs via automation
• Partner with security teams to ensure migrated workloads maintain compliance and governance requirements
• Implement and support data protection and encryption strategies for cloud services, products, and data
• Implement and support best practice requirements for logging and monitoring
• Troubleshoot and responds to cloud security incidents and assist with resolutions
• Creates and implements standard builds/templates for all technology platforms.
• Drives requirements to meet current and future needs, tracks and reports capacity postures.
• Applies secure software and systems engineering practices throughout the delivery lifecycle to ensure our data and technology solutions are protected from threats and vulnerabilities.
• Analyzes reports and delivery recommendations to remediate capacity issues.
• Implements capacity enhancements.
• Designs standard and custom technology solutions for business partner projects, including pre-production testing, performance tuning, handoffs and certification.
• Delivers technology/product optimization, migrations and management, including technology/product design, planning, power and environmental management.
• Collaborates with others to develop meaningful metrics that drive fact-based decisions on a given product/environment/solution.
• Conducts proactive system maintenance, disaster recovery planning, data backup and recovery as well as inventory, configuration and utility product management.
• Executes production engineering processes, incident management, root cause analysis, problem management, change management, release management and knowledge management.
• Provides production support for all technology platforms.
• Provides oversight for technical labs and development environments.
• May perform other responsibilities as assigned.

Benefits

• medical/dental/vision
• life insurance
• short and long term disability coverage
• paid time off with newly hired associates receiving a minimum of 18 days paid time off each full calendar year pro-rated quarterly based on hire date
• nine paid holidays
• 8 hours of Lifetime paid time off
• 8 hours of Unity Day paid time off
• 401(k) with company match
• company-paid pension plan
• business casual attire