IT Engineer (Cloud Security Engineer)

Ampcus - Vienna, VA

posted 4 months ago

Full-time
Vienna, VA
Professional, Scientific, and Technical Services

About the position

The IT Engineer (Cloud Security Engineer) position is a critical role focused on enhancing and maintaining the security of cloud environments, specifically within the Azure platform. The individual in this role will contribute to the vision and strategy for integrated security controls across various service models, including Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), and Infrastructure-as-a-Service (IaaS). This position requires a deep understanding of current risks and threats to cloud infrastructure, enabling the engineer to communicate effectively with both technical and managerial audiences. The engineer will drive the Identity and Access Management (IAM) strategy, configuration management, and monitoring for Azure, ensuring that security measures are robust and effective. They will provide consultancy and engineering support for cloud security solutions, which includes analyzing and developing security measures tailored to Azure and other platforms. The role also involves providing architecture assurance for cloud security initiatives, ensuring compliance with existing security standards while collaborating with infrastructure and development teams. In addition to maintaining security infrastructure tools built on the cloud platform, the engineer will support the development and delivery of a comprehensive Information Security Program (ISP) for the organization. Documentation of all security products, tools, technologies, and processes will be a key responsibility, ensuring that all security measures are well-documented and easily accessible. The engineer will also participate in Information Security Incident Response activities, responding to security vulnerabilities identified through audits and assessments of cloud services. Monitoring compliance with the organization's information security policies among employees, contractors, and third parties is essential, as is managing remediation efforts for any gaps identified in audits or recommended process improvements. The role requires active monitoring of new and emerging cloud security technologies, trends, and solutions to assess their applicability to the organization's cloud strategy.

Responsibilities

  • Contribute to the vision, strategy, and drive execution for integrated security controls across SaaS, PaaS, and IaaS for the Azure environment.
  • Demonstrate a clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures to both technical and managerial audiences.
  • Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure.
  • Provide security consultancy and engineering support for cloud security solutions, including analysis and development of Azure and other security solutions.
  • Provide architecture assurance on Cloud security initiatives and compliance with existing security standards while interfacing with infrastructure and development teams.
  • Maintain the security infrastructure tools built on the Cloud platform, ensuring stability and adherence to policies and procedures.
  • Support the development and delivery of a comprehensive Information Security Program (ISP) for the entire organization.
  • Develop and maintain documentation of all Security products, including specific tools, technologies, and processes.
  • Participate in Information Security Incident Response activities for the organization.
  • Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services.
  • Monitor compliance with the organization's information security policies and procedures among employees, contractors, and third parties.
  • Manage remediation efforts for any gaps reported in audits or recommended process improvements.
  • Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to the organization's cloud strategy.

Requirements

  • Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management.
  • Experience with certificate management for IaaS and PaaS elements.
  • Experience with Azure AD, Azure Resource Management Templates, and Azure policies.
  • Experience with Azure Key Vault integration and key management.
  • Experience with VSTS release management for Azure Key Vault and other IaaS and PaaS elements.
  • Hands-on development and scripting skills in PowerShell 5.
  • 7+ years' experience working in a technical role with a minimum of 3 years' experience focused on information security and access control.
  • Strong knowledge of information security and access controls.
  • Industry certification (CISSP, CISA, CISM, CEH) of high interest.
  • Financial industry experience preferred.

Nice-to-haves

  • Experience with CheckPoint Generation Firewall and Threat Prevention Suite.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service