Sr. Cloud Security Engineer

About The Position

Requirements

• 5+ years of experience conducting security assessments on AWS and Azure/Office 365
• 5+ years hands on experience with Linux and Windows operating systems and cloud provider ecosystems like Amazon AWS
• 5+ years of practical knowledge of AWS and Azure foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies
• 5+ years of experience designing and deploying micro services architectures (AWS EKS, Docker, etc.)
• 2+ years experience with AWS Well-Architected framework; experience with framework reviews and adoption

Nice To Haves

• Extensive experience architecting, designing, and programming applications and ample experience in high level programming languages such as C++, C#, Java, Python, Visual Basic
• Familiarity using AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, CloudFormation, CloudWatch, Route 53, etc.)
• Demonstrates understanding of IAM principles, including role-based access control, SSO, least-privilege access, and user lifecycle management (provisioning, deprovisioning, and governance
• Understanding of complex enterprise environments and current technology areas like cloud and mobility
• Excellent analytical and troubleshooting skills: Must have the necessary technical skills to constantly monitor systems to identify threats and vulnerability, execute security architecture, and ensure there are no external threats.
• Strong understanding of cloud architectures, design, and workload transition challenges

Responsibilities

• Responsible for the thorough documentation of implementations, via technical documentation and run-books
• Responsible for input and feedback on security architectures
• Apply adept understanding and experience with systems automation platforms and technologies
• Partake in efforts that shape the organization’s security policies and standards for use in cloud environments
• Direct and influence multi-disciplinary teams in implementing and operating Cyber Security controls
• Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements
• Execute security architectures for cloud, hybrid/cloud systems
• Responsible for automating security controls, data, and processes to provide improved metrics and operational support
• Employ cloud-based APIs when suitable to write network/system level tools for safeguarding cloud environments
• Stay abreast of emerging security threats, vulnerabilities, and controls
• Spot and execute new security technologies and best practices into the company’s Cloud offerings.
• Evaluate security posture, create reports, and make recommendations as needed.
• Ensure compliance with organizational security rules and standards.
• Coordinate response to information security incidents.
• Member of on-call rotation.
• Performs other job related duties or special projects as assigned
• Create, update, and maintain security architecture standards and best practices
• Conduct authorized cloud security assessments on a schedule basis and report the gaps in a meaningful way with potential solutions.

Benefits

• 401K matching
• health benefits
• employee stock options
• paid time off
• volunteer time off