10+ Cloud Security Engineer : Hybrid : Manhattan, NY at Manhattan, New York, USA |
Email: [email protected] |
From: Prakash Singh, RCI [email protected] Reply to: [email protected] Role: 10+ Cloud Security Engineer Location: Manhattan, NY Duration: 6-12 months Visa: GC and USC Must be local to NYC, 2-3 days onsite They want someone who has experience deploying in AWS and Cloud Security Focused. This is not a Network role but more cloud focused! More secondary skill-set: Palo Alto, Cisco Asa, Sumolgic or splunk, some vulnerability mgmt work. Running scanners etc. JOB DESCRIPTION: 10+ Years of Infrastructure experience. 8+ years of experience integrating cybersecurity practices into public cloud infrastructure AWS). 5+ years of experience with Cloud and/or SaaS operations. Knowledgeable in Agile and DevOps software development philosophy, methodologies, practices, and procedures. Experience integrating security best practices into the operations and development process pipeline Experience in refining SDLC and CI/CD pipelines to support SOC2 compliance efforts. Strong technical knowledge of Terraform, Continuous Integration systems Harness, and GitHub. Certifications are a nice to have and include any of the following: Architect level certification in AWS, Azure or OCI. CISSP, CCSP, GPYC,GCSA, GPCS, or Certified DevSecOps Professional WITHIN THREE MONTHS, YOULL Have a strong understanding of the business, and begin teaching us a thing or two we dont know Measure current state of automation and orchestration of SCA, DAST, and SAST findings Secure a few quick wins along the way WITHIN SIX MONTHS, YOULL Deliver an Infrastructure as Code (IaC) security, and docker container security strategy. Understand the complete k8s environment and begin to clarify which risks to mitigate first Begin to educate Development teams on the use of Threat Modeling. Begin to implement the vision for change/impact that you have been developing over the past 6-months. What you will need to have: 10+ years of Infrastructure and security 5+ years of relevant experience in security with 3+ years securing cloud platforms (e.g. IAM, VPC Security, KMS) 3+ years working with and hardening Linux environments (e.g. PAM, SELinux, SSHD, auditd) Experience with IaC / configuration management technologies (e.g. Terraform, Puppet) Knowledge of basic cryptography and common network protocols Basic understanding of containers and related technologies (e.g. k8s) Being able to review a platform change for infrastructure security concerns, researching potential problems, clearly articulate to app teams what is wrong, and then being able to support application teams from an infrastructure perspective to be able to secure the system What would be great to have: Bachelors in Computer Science or similar area of study, or equivalent industry experience Experience with HIDS and NIDS tooling Experience with SIEM, SOAR, and/or XDR solutions Experience with secrets management / PKI tooling (e.g. HashiCorp Vault) CISSP, GCP/AWS Cloud Security Engineer, or similar certifications Experience with SQL, and securing database technologies such as MySQL, Snowflake, etc Keywords: continuous integration continuous deployment green card New York |
[email protected] View all |
Tue Mar 19 20:45:00 UTC 2024 |