logo

View all jobs

Cloud Security Engineer

Concord, California
Roles & Responsibilities:
  • Assists in implementation of Security Standards, based on organization's Security policy and IT organization, with guidance from a senior member of Cloud COE or Cloud Security Manager
  • Advises on implementation of basic security standards and controls for Cloud solutions
  • Assists with implementation of standardized solutions to facilitate the secure access for one product or Application in the Cloud environment, with assistance from a more senior member of the Cloud COE
  • Identity and Access Management (IAM), Identity Federation / SSO
  • SIEM and Audit Logging (CloudTrail & Config)
  • Management of Security Groups and ACLs, Perimeter security with WAF and Shield DDoS
  • Data-in-Transit / Certificate Management, Data-at-Rest / Key/Secret Management
  • Assists with design of available, cost efficient, fault tolerant, and scalable distributed systems, with help from senior member of Cloud COE team
  • Familiar with AWS design principles and Security best practices and industry standards for security
  • Assists with implementation of Cloud Architecture solution, based on defined security standards for Cloud COE - from an Application and Infrastructure perspective
  • Assists with regular testing and scanning of Cloud products and application customers to provide compliance with overall security standards
  • Assists with delivery of simple Cloud security patterns and implementations based on customer requirements and adherence to security standards
  • Educates Cloud COE team to design and implement secure coding and continuous security practices within their applications
  • Partners with Engineering teams in Cybersecurity Services and SIOC to gather design considerations and requirements
  • Assess and implement controls for cloud computing services, cloud security controls, and identity and access management.
  • Create, implement, test, and remediate compliance controls for cloud architecture systems.
Required Qualifications: Cloud Security Engineer (Principal)
  • Familiar with / basic understanding of working in an Agile/Scrum environment
  • Familiar with / basic knowledge of Cloud computing technologies
  • Familiarity with AWS Well Architected Framework and Cloud migration industry standards and best practices
  • Technical writing skills for documenting environments and operating procedures
  • Prior programming background in at least ONE language: C++, Java, Python, Ruby etc.
  • Experience with continuous security practices, including: threat modeling, threat and vulnerability management, secure coding practices, and automated penetration testing.
  • Experience with security solutions such as WAF, IPS, and anti-DDOS systems
  • Extensive experience with IT Compliance and risk management requirements (e.g. security, privacy, SOX, etc.)
  • Experience with network / perimeter security platforms
  • Experience with encryption in-flight and at-rest practices, as well as certificate and secrets management, security event & incident management (SIEM) platforms.
  • Experience with infrastructure automation, infrastructure as code, automated application deployment, monitoring/telemetry, logging, reporting, and continuous delivery technologies
  • Experience performing security assessments
  • In-depth knowledge of Amazon Web Services including experience with Lambda, IAM, KMS, VPC, ELB, EC2, RDS, CloudTrail, CloudFormation, CloudWatch, Ansible and Jenkins
  • Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks.
Certifications
  • CISSP, CISA, CISM, IS027001 LA/LI, SANS (or equivalent experience)
  • AWS Certified Solutions Architect – Associate (or equivalent experience)
  • AWS Certified Solutions Architect – Professional (or equivalent experience)
  • AWS Certified DevOps – Associate (or equivalent experience)
  • AWS Security – Specialty (or equivalent experience)
  • AWS Certified DevOps – Professional (or equivalent experience)
Please share the resumes to gfernando@matchps.com

Genisia Fernando
Technical Recruiter - MatchPoint Solutions
email: gfernando@matchps.com I Phone : 925-829-4621

Share This Job

Powered by