Cloud Security Engineer (AWS) NEW

Computer World Services Corp. (Cws) - Mansfield, TX

posted 10 days ago

Full-time
Mansfield, TX
Professional, Scientific, and Technical Services

About the position

The Cloud Security Engineer will support the planning, coordination, implementation, and oversight of the organization's cloud network and infrastructure. This role involves assessing and analyzing security risks, facilitating the identification of security needs, and designing and implementing security solutions to minimize risks associated with IT systems. The engineer will also oversee security staff efforts and ensure compliance with industry standards while collaborating with development teams to integrate applications with cloud services.

Responsibilities

  • Implement security measures and ensure compliance with industry standards.
  • Monitor and optimize cloud performance, including incident recovery processes.
  • Utilize tools such as Splunk for Security Information and Event Management (SIEM) monitoring, analysis, logging and reporting.
  • Review, analyze and report AWS GuardDuty alerts.
  • Ensure secure development processes are implemented and maintained.
  • Collaborate with development teams to integrate applications with cloud services.
  • Identify and define computer system security requirements in coordination with DevOps teams.
  • Define and implement computer security architecture and detailed cybersecurity strategies.
  • Develop technical solutions and utilize security tools to help mitigate security vulnerabilities and automate repeatable tasks.
  • Conduct and support investigations related to security incidents involving technology (i.e. email, endpoint, applications, and data breaches).
  • Consult on IT security and compliance initiatives to ensure Dev Sec Ops practices are well-defined and predictably executed.
  • Support risk mitigation activities such as Assessment and Authorization (A&A), continuous monitoring, and vulnerability and configuration management.
  • Integrate with and support a team of subject matter experts, in a highly agile environment, to implement best in class cloud solutions by leveraging a variety of automation, instance and/or container, orchestration, security, and native/non-native cloud services.
  • Work with cloud team to architect, design, implement and maintain cloud solutions and new capabilities in AWS.
  • Develop deliverables associated with FISMA security package including but not limited to: System Security Plan, Contingency Plan, Incident Response Plan and Continuous Monitoring Plan.
  • Work to complete ATO packages compliant to NIST SP 800-37 and SP 800-53 guidelines.
  • Adhere to NIST Risk Management Framework to support analyzing development of supporting policies, procedure and plans and for the implementation of security controls and analyzing corrective action plans.
  • Work with the System Owners, ISSOs and other stakeholders to complete assessment reports.
  • Analyze IT security events to distinguish events that qualify as security incidents as opposed to non-incidents.
  • Maintain working knowledge of network communications, routing protocols and common internet applications/standards.

Requirements

  • Bachelor's Degree or higher and 10 years of related experience.
  • Expert knowledge of AWS services including Management Console, GuardDuty, EC2, VPC, CloudTrail, Secrets Manager, Systems Manager.
  • Ability to perform Tenable Nessus SC scans and analyze results for vulnerability remediation.
  • Familiarity with Continuous Diagnostics and Mitigation (CDM) Dashboard.
  • Experience with hardware/software security implementation and encryption techniques/tools.
  • Experience in developing System Security Plan, Contingency Plan, Incident Response Plan and Continuous Monitoring Plan.
  • Ability to support Certification and Accreditation (C&A) and related initiatives.

Nice-to-haves

  • Experience with native CI/CD tools such as CodeCommit, CodeDeploy, CodePipeline.
  • Scripting skills (Python, Ruby, Perl, Bash, Powershell).
  • Strong knowledge and experience with virtual desktop interfaces.
  • Proficiency with Cloud networking and troubleshooting Cloud networking environments (IP networking, VPNs, DNS, load balancing, firewalls, NAT, SSL/TLS).
  • Experience with SIEM tools (e.g. ArcSight, Splunk).
  • Familiarity with Firewall Devices/Platforms (e.g., Palo Alto, Cisco ASP).
  • Experience with Cyber Security Assessment & Management (CSAM).
  • Knowledge of Information Assurance Compliance System (IACS).

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service