Cloud Security Engineer

Cloud Security Engineer

Requirements

• A Bachelor’s degree in Information Technology, Information Systems, Engineering, or a related field. Any combination of advanced course enrollment, certification and years of relevant work experience can be substituted
• 10+ years of experience in IT
• 4 years of IT security experience designing or building security solutions and supporting security incident response
• Industry certifications, or demonstrated extracurricular participation in one or multiple security domains are required
• A diverse technical skill set with the desire to stay “up to speed” with the changing threat landscape, trends, and security solutions on the market
• Proficiency and experience in the below technical areas: Endpoint: OS hardening, endpoint management, endpoint protection/Anti-virus, disk encryption, USB protection; Network: UTM, TCP/IP, SSL/TLS, proxy, content filtering; Data: security implications of data-in-transit, at-rest, and in-use, DLP, DAG; Identity: SSO, MFA, authentication and authorization logic; Additional concepts: least privilege/least access, attack surface reduction, good knowledge of a wide range of applications, services, and protocols
• Demonstrated knowledge of tactics, techniques, and procedures (TTP’s) commonly used by threat actors and indicators of compromise (IoC’s)
• Awareness of cyber attack models- MITRE Att&ck, Cyber Kill Chain and how these translate to defense planning
• Ability to quickly assess risk impact from environment changes like implementation of new solutions or software, network design change or integration, and modification of system features
• Motivation and drive to “hunt” for threats or seek out optimization opportunities to improve effectiveness of controls
• Ability to maintain a people, process, technology view through design, build, and run phases of service and capability delivery
• Ability to handle multiple tasks, prioritize and meet deadlines
• Familiarity with regulatory and legal obligations: SOX, ITGC
• Understanding of IT Security frameworks: NIST CSF, CIS CSC
• Excellent written and verbal communication skills
• Able to lead or participate in Cyber Security incident response and investigations.

Responsibilities

• Advance the Cyber Security road map and identify and lead security posture improvements
• Maintain and optimize security software and tools
• Evaluate capabilities and effectiveness of control environment and its individual controls and platforms and recommend required enhancements to the Cyber Security Manager
• Liaise with the Managed Detection and Response (MDR) services provider and ensure quality delivery through reporting and governance
• Investigate potential and confirmed security incidents, lead response efforts, lessons learned, and implementation of resulting proposed improvements
• Work with members of IT, application and system owners, and the business where required to remediate systems and applications with detected vulnerabilities.
• Work closely with peers in the Infrastructure team, the Infrastructure Architect, Application Development, to create and maintain a secure environment
• Consult with lines of business to guide best practices and offer solutions when the need arises
• Lead the threat and vulnerability management function leveraging vulnerability management tools and processes

Preferred Qualifications

• Desired Certifications (or equivalent demonstrable experience): One of the below: Microsoft Certified Cyber Security Architect Expert, Microsoft Certified Azure Security Engineer, CompTIA Security+; Plus SANS certification demonstrating specialized knowledge within a security domain
• Knowledge of PowerShell or other scripting languages