Job #: 988

Title: Cloud Security Engineer


  • New York City, NY
  • Northern New Jersey
  • Job Type:

  • Permanent
  • Salary Range:
  • $150,000 to $175,000

    • Anywhere
    • Posted 8 months ago

    Cloud Security Engineer to collaborate across all organizations to identify, deliver, and document the required security artifacts to enable movement of applications and data to the cloud. The Cloud Security Engineer will be a hands-on position that requires a high degree of technical expertise to directly interact with the engineering and application development teams and leadership to drive alignment on security requirements, influence decision makers, build relationships, and communicate strategy and architecture to the broader internal community.Your Opportunity

    Primary Responsibilities:

    Assess, design, implement, automate, and document security processes and solutions leveraging Amazon Web Service (AWS) and other cloud based services
    Design architecture, methods, and controls required to meet security, compliance, and audit requirements.
    Collaborate with the Cloud Engineering team to develop and deploy the security solutions you design
    Identify, design and implement tools/processes to pro-actively identify cloud cost savings initiatives. Create alerts for potential upcoming high cost areas to respective business owners
    Implement a tool driven and highly automated approach to deliver our key security management processes by exploiting investment in existing tooling (e.g. ServiceNow, Puppet, Splunk, AWS Native Tools) and/or identify new tooling
    Design and implement AWS/Cloud based DevSecOps processes and tools
    Proactively stay current with developments in relevant technologies
    Create and share unique ways to solve challenges with others
    Work with Security Operations to design and build proactive alerts/dashboards within SIEM (Splunk) to extract pertinent security data and unusual/suspicious activity from AWS audit, logs, etc.
    Develop procedures to automate security tasks and security tool installations during code builds and deployments
    Respond to and, when appropriate, resolve or escalate cloud security incidents
    Report unresolved security exposures, misuse of resources, and noncompliance situations
    Assist and train team members in the use of cloud security tools and the resolution of security issues
    Develop and maintain documentation for security systems and procedures
    What you’ll need

    Required Background:

    Experience architecting solutions within Amazon Web Services (AWS) and, preferably, other cloud providers (Azure, Google)
    Proven experience securing cloud software, platforms and/or infrastructures as an architect or engineer
    Experience with the assessment, implementation, management and documentation of a broad set of information security technologies and processes (e.g., application security, data protection, encryption, access management, governance, network security) within a cloud environment
    Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, Config, CloudTrail, CloudFormation, Lambda, and others
    Experience with the development, deployment, and automation of security solutions in an enterprise cloud based environment
    Experience with a broad range of security technologies including, DLP, IDS/IPS, IAM, Certificate Management, etc.
    Strong knowledge of AWS automation strategies and tools
    Knowledge of technology and security topics including network and application security, infrastructure hardening, security baselines, web server, and database security
    Ability to clearly and effectively communicate concerns, issues to other teams
    Experience in developing, documenting, and maintaining security procedures
    Bachelor’s Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience
    And ideally

    Desired Experience/ Skills:
    Any recognized IT security (e.g., CISSP, CISM, CCSP…) and/or Cloud Security-related certifications (e.g., AWS, Google, Azure, etc.)
    Working proficiency with work tracking systems such as JIRA, Confluence, and project management solutions
    Knowledge of network based, system level, and application layer attacks and mitigation methods
    Knowledge of technical security control environments and compliance frameworks including COBIT
    Experience with one or more general purpose programming languages including but not limited to:  AWS CLI, Bash, Java, C/C++, C#, Objective C, Python, JavaScript
    Possess significant breadth across other disciplines (e.g., enterprise security architecture, compute services, storage, large-scale networking, virtualization, data center, integration architecture (API), orchestration technologies (Puppet), systems resiliency, service support, application development lifecycle management (DevOps), and service delivery).

    Your Name*

    Your Email*

    Your Phone*

    Your Message

    Please attach your Resume*