Cloud Security Engineer
Posting ID: JP-002663081
Cloud Security Engineer Operating within the core values and operating principles of the organization, evaluates and recommends corporate cybersecurity solutions and standards, including regulatory and compliancy requirements. Essential job functions should be accomplished without supervision. Position Responsibilities A cloud security engineer builds, maintains, upgrades and continuously improves cloud networks, and cloud-based systems. Primarily responsible for the operations of security cloud infrastructure, platforms and software. Security Awareness & Control Deployment • Maintain up-to-date detailed knowledge of the information security industry including awareness of new or revised security solutions, improved security processes, new attacks and threat vectors. • Proactively recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security. • Provide guidance to management on current cybersecurity threats and recommendations to protect corporate assets and brand image. • Deploy, configure, and integrate, and manage new security solutions and enhancements/maintenance to existing security solutions in accordance with policies and standards. Threat Hunting, Analysis, and Response • Monitor security controls, intrusion detection events, and network traffic for unusual or suspicious activity, interpret activity, and take responsive action. • Threat hunt and respond to malware/virus alerts, perform forensic analyses, and implement remediation steps. • Tune cloud security configuration and rules and create custom log source integration with parsing and integrate output with SIEM. • Provide resolutions to intrusion events, security incidents, and other threat indications, and provide warning information to teams. • Lead effort with implementation of counter-measures and mitigating controls. • Design and execute vulnerability assessments, penetration tests, and security audits. • Identify and develop security and productivity-enhancing improvements through automation, streamlined procedures, and other efficiency innovations. • Perform forensic investigations and e-Discovery searches as needed. • Provide on call support to end users for incident response and security solutions. • Participate in risk assessments for new technologies and projects and recommend changes or improvements. • Contribute to IT and Information Security Risk Management function by identifying risks and participating in risk response planning. • Closely collaborate with other teams on security and policy issues. • Promote security awareness to the user community and IT personnel. • Contribute to team growth by mentoring and collaborating with teammates. • Complete required security project diagrams and documentation. • Document standard operating procedures and run books. • Participate in development of security plans, risk assessment plans, business continuity plans, incident response plans, and cybersecurity policies and standards. • Report on security system activity and end user activity audits. • Provide supporting data for key metrics and performance indicators. • Develop written processes and procedures for service desk personnel to use during routine security ticket handling. Core Competencies • Achieves Results/Has Bias for Action - Achieves stretch results. Strong bias for action with sense of urgency and high energy. Practices collaborative working environment to achieve more. • Customer Focus - Has ability to look from a user’s view. Looked at as a business partner by internal users. Anticipates business partner needs to ensure minimal barriers to doing business. • Uses Effective Communication Skills - Candid, clear and concise in communication. Effectively matches style, tone, and method to audience. Connects with intended audience. Manages communication and feedback within the organization. • Displays Leadership/Team Orientation - Works collaboratively to achieve organization’s success. Effectively uses position and interpersonal skills, mobilizes and inspires others to take action (situational leadership). Willing and able to lead beyond area of expertise. • Technical Skills - Hold self and others to high standards. Strives to stay ahead of technical expertise, is proactive and inspires others to stay current in areas of technical expertise Required Education/Experience • Bachelor’s degree in computer related study. • 5 years’ experience in Information Technology, with Cloud technology applied skills. • Preferred security certification: • Certified Information System Security Professional (CISSP) certification • Certified Information Systems Auditor (CISA) certification • Certified Information Security Manage (CISM), or any SANS certification • Cloud IT certifications • Strong working knowledge of enterprise infrastructure and applications • Strong technical cybersecurity knowledge (for example, application secure coding standards (OWASP), identity and access (IAM) control standards, endpoint protection, intrusion detection/prevention systems, firewalls, threat and vulnerability management). • Strong overall technical skills in applications, change management, disaster recovery, operating systems, and networking. • Demonstrated knowledge of PCI controls and requirements. • Knowledge of IT General control frameworks, such as CoBIT and ISO 27001. • Knowledge of cybersecurity frameworks, such as NIST CyberSecurity Controls Framework and SANS. • Excellent documentation and writing skills. • Strong interpersonal and communication skills. Work Environment Works in a temperature controlled environment. Essential Job Functions While performing the duties of this job, the employee is frequently required to stand, walk, sit, use hands to finger, handle, or feel and talk or hear. Specific vision abilities required by this job include close vision, distance vision, color vision, depth perception, and ability to adjust focus. This job requires the ability to perform duties contained in the job description for this position, including, but not limited to, the above requirements. Reasonable accommodations will be made for otherwise qualified applicants as needed to enable them to fulfill these requirements. Travel 3% or less travel required
Aws, Cloud, Cyber security, certifications
Top Skills Details:
Additional Skills & Qualifications:
Nice to haves: 1. Certifications are nice-to-have (ex. CISSP) 2. The more AWS Security tool experience they have the better 3. Networking background is a plus
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Recruiter: Jean Chambers
Phone: (410) 579-3072