Sr. Cloud Information Security Engineer

About The Position

Requirements

• Bachelor's degree in the field of Information Security, Information Assurance, Computer Science, Information Technology, or similar, OR 10+ years of experience with Cloud Computing technologies will be considered.
• A current and active Microsoft Azure Security Engineer Associate Certification (Required), Microsoft Cybersecurity Architect Expert, or demonstratable direct hands-on experience within Microsoft Azure at the relevant level for this role.
• 5+ years of experience in a Cloud Information Security role supporting a corporate Information Security Program.
• A passionate, team-focused, but independently driven work ethic.
• In-depth, hands-on knowledge and skills with Azure, Infrastructure as Code, and CI/CD pipelines.
• In depth knowledge and experience with cloud-based vulnerabilities and exploits, as well as their remediations.
• Knowledge and exposure to cybersecurity frameworks.
• Experience working in or with cloud application development teams.
• Cybersecurity incident response (Cloud experience preferred).
• A strong understanding of Network support and architecture (On premise and cloud).
• Cloud based threat modeling.
• Ability to work with all levels of the business to obtain information related to existing controls, configurations, and processes.
• Ability to communicate complex information security risks and scenarios to a general audience.
• Ability to work with minimal supervision.

Nice To Haves

• Experience with Vulnerability management tools (WIZ, Rapid7, Nessus, etc) (Expert).
• Experience/Exposure to Security frameworks (CMMC and SOC2 preferred) (Novice).
• Information Security Incident Triage and Handling (Intermediate).
• Ticket/Case Management (Expert).
• Gitlab/Terraform/IAC (Intermediate/Expert).
• Ability to create and maintain documentation (Intermediate).

Responsibilities

• Monitor the environment against specified security frameworks.
• Triage and respond to incidents according to the Incident Response Cycle.
• Work closely with global Information Security teammates through video conference and messaging technology.
• Work with various tools such as:
• Cloud Security Posture Monitoring tools.
• Vulnerability Scanners.
• Security Incident and Event Managers.
• Testing tools (Burp Suite and the like).
• Firewalls.
• Compile and present monthly operational metrics.
• Build process and environment documentation.
• Assist with compiling evidence for compliance audits.
• Assist with projects as assigned.
• Be the Subject Matter Expert on assigned tools.

Benefits

• Competitive compensation and benefits–we cover 85% of employee and dependents’ health care premiums, 100% company paid employee life and disability insurance premiums, 401K match, generous FTO policy (U.S. only), option to purchase voluntary life, accident and critical illness insurance, employee assistance program, maternity and parental bonding leave and much more.
• Collaborative and innovative environment –make an impact on worldwide security while working on the hottest technology.
• Leadership that supports and encourages professional growth and development.