Remote Sr. Cloud Security Engineer

in Charlotte, NC

Job #:263407

Practice Area: Creative

Date Posted: 05/21/2018

Share this job  

 

Job Title:  Sr. Cloud Security Engineer

 

Location:  100% Remote

Industry:  Financial – Merchant Services

Terms:  Permanent

Compensation: 140K salary

Requirements:  Cloud, Azure, Info. Security, Linux servers, scanning tools, IT Security



Senior Cloud Security Engineer

 

Essential Functions

  • Provide consultation on best practices for teams starting to build apps on platform as a service
  • Provide architecture guidance and best practices on application architectures and platforms.
  • Perform development, automation, and deployment assignments without close supervision.
  • Provide application development and cloud technology leadership, guidance, and assistance to other team members.
  • Conducts routine maintenance of the virtual machines and makes recommendations for improvements to the environment always considering other Azure offerings as solutions
  • Works independently on complex, globally distributed cloud technology components that may be used by one or more applications or systems
  • Use built in Azure offerings to maintain and enhance security
  • Create and maintain scripts to improve automation throughout the enterprise.
  • Develop and maintain documentation on our cloud solution business continuity, resources and processes.
  • Develop thorough and accurate procedures and knowledge base content for solutions.
  • Look at the big picture in order to understand how software, hardware and network systems interact in a complex IT environment.
  • Serve as the subject matter expert for IT in both customer implementations and development of new software features
  • Take the initiative to improve processes, solutions and configurations rather than transact on legacy procedures.
  • Balance personal ownership of daily tasks with completion of short-, mid- and long-term projects. 

Skills Desired:

  • 2-5 years of Cloud Engineering experience, at least one of which is on the MS Azure platform.
  • 5+ years of experience in information security, privacy, and risk management with leading technology
  • Understanding of all Azure services, Linux servers, web and application hosting, monitoring, and IT security
  • Strong understanding of cloud computing capabilities and limitations, business drivers, virtualization technologies, Infrastructure as a Service, Platform as a Service and Software as a Service Cloud delivery models
  • Thorough understanding of system and infrastructure management in the Azure Cloud environment (Windows servers, firewalls, load balancers, hypervisors, storage, monitoring, security etc.)
  • Experience with container technology
  • Operational Risk Management (ORM) concepts and risk management.
  • Research tools, techniques, countermeasures and trends in network vulnerabilities, data hiding and network security
  • Ability to research various cyber actors’ TTPs, organizational structures, capabilities, personas, and environments, and integrate think outside the box methodologies into risk assessment operations.
  • Managing, configuring and supporting MS Azure in conjunction with an MSP.
  • Modification, testing and utilization of computer network attack and exploitation tools.
  • Has ability to conduct research into network issues, standards and products as required.
  • Good interpersonal skills and strong customer service orientation
  • Highly self – motivated with attention to detail.

Skills Preferred:

  • Ability to automate tasks using a scripting language (Python, Perl, Ruby, etc).
  • Experience with cloud security-scanning tools – Security Monkey, CloudCheckr, Evident.io, Cloud Conformity, RedGate, DivvyCloud, etc.
  • Experience with Cloud WAF - Akamai Kona, AWS WAF, Arbor, Prolexic, or similar tools
  • Demonstrated understanding of Cloud SIEM – Cloudtrail, Cloudwatch, and other packaged SIEMs such as IBM Qradar, LogRythm, Splunk, ELK, ArcSight, AlienVault
  • Experience with Key Management - Privileged account management solutions in the cloud for key management, service account and secrets management, rotation and event response, including tools such as Secret Server (Thycotic), Vault (HashiCorp), Cloud KMS, or similar tool set.

 


Apply Now