Job Description :
Security Engineer role that brings deep expertise and experience in either Azure, OpenStack, or AWS security to be able to engage at a technical, hands-on level with various cloud initiatives.
This person will have fluency with either Azure, OpenStack, or AWS.
They will also have a demonstrated deep understanding of security fundamentals and associated cloud-based security options, in order to advise at all levels of the security engagement as a part of the security model including architecture, design, and configuration review.
Desired critical cloud service areas of experience:
Web Services
RPC
API
REST
Virtualization Networking
Storage
Essential Duties & Responsibilities:
Provide technical leadership, solution design, and hands-on development support of security controls for infrastructure and software deployments
Develop Threat Models and Perform Security Health Checks in the Public Cloud environment and work with developers to ensure code is secure to address threats and recurring issues
Enable cloud activity visibility, logging and reporting to Corporate via cloud security toolsets
Collaborate cross-functionally and engage with all levels of leadership to gather requirements, build appropriate cloud security technology roadmaps and implementation plans
Interface with IT Risk Management and Compliance to coordinate related policy and procedures, and to provide for the appropriate flow of information regarding risk treatment
Provision and maintain the Cloud Hardware Security Module (HSM) crypto domain partitions
Control access to AWS Cloud HSM and Azure, OpenStack equivalents
Provide security and technical architecture guidance on HSM and data encryption solutions
Demonstrable experience at the intersection of information security and the AWS and Azure, OpenStack ecosystem
Ambassador for Security in Architecture review meetings and sessions
Requirements:
Experience with Azure, OpenStack, and/or AWS certifications
Experience in DevOps or CI/CD Pipelines
Software development or infrastructure experience
Security engineering, system and/or network security experience
Hands-on Experience with Management Services such as Cloud Watch, Lambda, and AWS Config and Azure, OpenStack equivalents
Docker, AWS EC2 Container Service (ECS) and Azure, OpenStack equivalents
IT Security Frameworks like CIS, NIST, etc.
Authentication, Security firewalls & other security protocols
Experience in the management and configuration of FIM, SIEM, DLP, VPN, Firewall, IDS, IPS, and Malware products
Experience with Security design reviews and supporting processes Cloud automation software
Experience with AWS and Azure, OpenStack scripting languages equivalents
Experience with Network segmentation, Firewalls, and proxy configurations
Experience with AWS and Azure, OpenStack IAM Roles and Policies, Encryption Key Management
Experience with Security standards and frameworks NIST, ISO, PCI, and others