cybersecurity analyst iv

$150,862 - $171,662/Yr

Randstad - Charlotte, NC

posted 3 months ago

Full-time - Mid Level
Charlotte, NC
Administrative and Support Services

About the position

We are looking for a Lead Cloud Security Engineer to join our team and help us protect our data in our cloud environment from cyber threat actors. You will be responsible for designing, implementing, and maintaining security solutions that align with our business objectives and industry best practices. You will also participate in a cross-functional team with other cloud security engineers and collaborate with other stakeholders to ensure compliance, risk management, and incident response. In this role, you will review design and implement cloud security architectures and policies for AWS environments. You will design and enforce policies for data access, retention, and deletions, and develop and enforce data protection and encryption strategies for cloud data and assets. Working closely with cross-functional teams, you will assess risk and deliver countermeasures that protect customers and company data. You will establish and document repeatable processes that ensure proper use of encryption, key management, data masking, and data labeling technologies in the cloud. Additionally, you will monitor and analyze cloud security events and data loss incidents, providing remediation guidance as necessary. Your participation in cloud security assessments and audits will be crucial, as will your ability to research and evaluate emerging cloud security trends and technologies for Data Protection, providing recommendations for adoption. As a Lead Cloud Security Engineer, you will provide technical guidance to a team of Data Protection engineers and partner with Cloud platform teams (Azure, AWS, OCI, GCP) to design and implement security controls. Ensuring compliance with data privacy regulations and standards will be a key responsibility, as will the establishment of key performance indicators for AWS data protection events. You will develop and maintain security standards and baselines to ensure controls and governance are implemented and updated dynamically at the speed of DevSecOps. Finally, you will define the Minimum Security Baseline for the use and implementation of services and applications with AWS that adhere to specific identity and Access Management practices and security governance, ensuring the reliable operation of controls and enabling continuous and real-time auditing. Participation in AWS Security Immersion Days and contribution to the AWS Security Reference Architecture will also be part of your role.

Responsibilities

  • Review design and implement cloud security architectures and policies for AWS environments.
  • Design and enforce policies for data access, retention, and deletions.
  • Develop and enforce data protection and encryption strategies for cloud data and assets.
  • Work closely with cross-functional teams to assess risk and deliver countermeasures that protect customers and company data.
  • Establish and document repeatable processes that ensure proper use of encryption, key management, data masking, and data labeling technologies in the cloud.
  • Monitor and analyze cloud security events and data loss incidents and provide remediation guidance.
  • Participate in cloud security assessments and audits and provide recommendations for improvement.
  • Research and evaluate emerging cloud security trends and technologies for Data Protection and provide recommendations for adoption.
  • Provide Cloud security technical guidance to a team of Data Protection engineers.
  • Partner with Cloud platform teams (Azure, AWS, OCI, GCP) to design and implement security controls.
  • Ensure compliance with data privacy regulations and standards.
  • Ensure technical scripting and securing of the governance policy.
  • Collaborate with the team to establish key performance indicators for AWS data protection events.
  • Develop and maintain security standards and baselines to ensure controls and governance are implemented and updated dynamically at the speed of DevSecOps.
  • Define the Minimum Security Baseline for use and implementation of services and applications with AWS that adhere to specific identity and Access Management practices and security governance.
  • Establish reliable operation of controls and enable continuous and real-time auditing.
  • Participate in AWS Security Immersion Days and contribute to the AWS Security Reference Architecture.

Requirements

  • Bachelor's degree in Computer Science, Information Security, or related field.
  • At least 5 years of experience in cloud security, preferably in AWS.
  • Proficiency in data protection strategies for cloud storage, databases, and applications.
  • Knowledge of AWS-specific data protection tools and services.
  • Understanding of global data protection laws and regulations.
  • Ability to perform risk assessments and data protection audits.
  • Analytical skills to assess data protection needs and compliance requirements.
  • Good knowledge of AWS security services and features, such as IAM, KMS, VPC, S3, CloudTrail, CloudFormation, etc.
  • Good knowledge of cloud security standards and frameworks, such as NIST, ISO, CSA, etc.
  • Good knowledge of data protection and encryption methods and technologies, such as AES, RSA, PKI, SSL/TLS, etc.
  • Good knowledge of cloud security threats and vulnerabilities, such as insider threat, misconfiguration, data leakage, etc.
  • Good knowledge of cloud security tools and solutions, such as AWS Inspector, GuardDuty, Macie, WAF, etc.
  • Good knowledge of Security Information and Event Management (SIEM) systems including creating and refining searches for alerting purposes.
  • Good knowledge of Data Lakes.
  • Knowledge of infrastructure as code.
  • Hands-on experience implementing security control in AWS environments.
  • Good knowledge of cloud security best practices and methodologies, such as DevSecOps, CI/CD, etc.
  • Good communication, presentation, and leadership skills to articulate data protection strategies.

Nice-to-haves

  • Certification such as AWS Certified Security Specialty is preferred.

Benefits

  • Comprehensive benefits package including health insurance.
  • Incentive and recognition program.
  • 401K contribution.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service