Senior Cloud Security Engineer

$114,048 - $142,560/Yr

Rocket Software - Washington, DC

posted 5 months ago

Full-time - Senior
Washington, DC
11-50 employees
Publishing Industries

About the position

As a Senior Cloud Security Engineer at Rocket Software, you will play a pivotal role in securing our cloud infrastructure and services, primarily within AWS and Azure environments. This position is part of a global IT organization dedicated to providing world-class service to our software development labs and internal departments. Your primary mission will be to ensure that our employees have secure access and communication systems, enabling them to perform at their highest level. You will be responsible for the security of company data and workloads in public cloud infrastructure, providing guidance, advice, and reports on activities and remediation efforts to address cyber risks in the cloud. In this dynamic role, you will monitor, analyze, and resolve security incidents proactively while supporting the security technologies that protect the company. The ideal candidate will thrive in a fast-paced and ever-changing environment, contributing to the development of a world-class security program. You will deploy, manage, and maintain the enterprise cloud security technology stack, utilizing a wide range of security capabilities, including both native cloud tooling and third-party platforms such as CNAPP and CSPM solutions. Your expertise will help build a layered defense approach to our cloud environments. You will also develop incident response playbooks and best practices focused on cloud architectures and technologies. Collaborating with the Chief Information Security Officer (CISO), you will create a company-wide program for secure cloud services and coordinate with external security partners on critical security workflows. As a key technical member of the cyber response team, you will support the investigation and remediation of cyber events and incidents, participating in red team/blue team/purple team exercises and enterprise tabletop exercises. Your role will also involve analyzing, assessing, and testing for cyber threats across enterprise clouds, protecting Rocket's customer and intellectual property data, and developing reports that detail your approach, analysis techniques, results, and recommended remediations.

Responsibilities

  • Deploy, manage and maintain the enterprise cloud security technology stack
  • Utilize a wide range of security capabilities including both native cloud tooling and 3rd party platforms such as CNAPP and CSPM solutions, network detection and response (NDR), vulnerability assessment and discovery, identity and access management (IAM), data protection solutions, key management (KMS), and event logging systems to build a layered defense approach to cloud environments
  • Develop playbooks for incident response and best practices focused on cloud architectures and technologies
  • In coordination with the CISO, create a companywide program for secure cloud services
  • Coordinate with external security partners, such as managed detection and response (MDR) providers on critical security workflows and playbooks
  • Function as a key technical member of the cyber response team supporting the investigation and remediation of cyber events and incidents, red team/blue team/purple team and enterprise tabletop exercises
  • Analyze, assess and test for cyber threats across enterprise clouds
  • Protect Rocket customer and intellectual property (IP) data
  • Develop and present reports that detail approach, analysis techniques, results and recommended remediations

Requirements

  • At least 7 years of experience securing public cloud infrastructure in AWS and Azure
  • Hands-on experience with tools such as Palo Alto Prisma, Wiz, Orca or Lacework
  • Experience working with secure cloud networking, compute and data workloads, and serverless computing solutions
  • Experience securing CI/CD cloud delivery pipelines
  • Knowledge of secure cloud architecture and best practices such as AWS's Well-Architected Framework
  • Knowledge of cloud incident response and experience with tabletop exercise and red/blue/purple team engagements is highly desirable
  • Experience with GCP and IBM clouds is desirable
  • Experience with scripting languages is a plus
  • Experience providing user guidance, documentation, and consultation
  • Excellent troubleshooting skills, self-motivated, results-driven and well organized
  • Experience with explosive growth and variable requirements
  • Experience with change and incident management processes
  • Certifications such as AWS Certified Security Specialty or Azure Security Engineer Associate are desirable

Nice-to-haves

  • Experience with GCP and IBM clouds
  • Experience with scripting languages
  • Certifications such as AWS Certified Security Specialty or Azure Security Engineer Associate

Benefits

  • Extensive paid time off programs (paid holidays, sick, and unlimited vacation time)
  • Healthcare coverage options to fit you (and your family's) needs
  • Retirement savings, with matching contributions by Rocket Software
  • Life and disability coverage
  • Leadership and skills training opportunities
  • Two paid work days for off-site training

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service