Job Details

Home

Security SME -USC,GC,H4EAD only -Remote USA at Remote, Remote, USA

From:

Nitya,

Nitya software solution

ryan@nityainc.com

Reply to: ryan@nityainc.com

Job Title: Security SME
Location: Remote
C2C
USC,GC,H4EAD

Role & responsibilities:
The Information Security Lead will be responsible for providing leadership in the areas of Information Governance, Data Protection, and Cyber Security. This role involves developing and implementing policies and ensuring compliance with relevant legislation and standards where we operate. The Information Security Lead will play a crucial role in establishing a robust Information Security Governance framework, managing risks, and implementing effective security measures.

Responsibilities:
Review and assess security posture of Terraform configurations, Azure resources, and overall infrastructure design.
Identify potential vulnerabilities and recommend mitigation strategies.
Collaborate with the Azure Solution Architect to ensure security considerations are incorporated into the design phase.
Configure security controls in Azure for access management (Azure Active Directory), data encryption, threat protection, Web Application Firewall (WAF), and activity logging, following documented best practices.
Participate in security discussions with stakeholders and provide recommendations for minimizing risks and ensuring compliance with security policies and regulations (including relevant data privacy regulations).
Maintain a focus on continuous learning to stay up-to-date on the latest cloud security threats, vulnerabilities, and best practices for securing cloud environments, proactively identifying and mitigating potential risks.
Oversee and potentially conduct regular security assessments of the cloud environment (penetration testing may require collaboration with external specialists).
Collaborate with the Technical Lead to implement security controls during infrastructure deployment using Azure security features and IaC security best practices.
Work with DevOps teams to integrate security considerations into the development and deployment pipeline.
Manage compliance with industry security standards (e.g., ISO 27001) (may vary depending on project requirements).
Develop and implement a compliance strategy for the cloud project (may vary depending on project requirements).
Promote awareness of security policies and procedures within the project team.
Investigate suspected security incidents and manage security incidents according to established procedures.
Provide reporting on security risks and mitigation efforts to relevant stakeholders.

Qualifications:
Strong understanding of cloud security principles and best practices (secure design principles, access controls, data encryption, threat protection, incident response, web application security).
In-depth knowledge of Azure security features and configuration options (Azure Active Directory, Azure Security Center, Azure Key Vault, Azure Defender for VMs/Cloud Apps, Azure WAF).
Participate in and lead EPIC (Electronic Protected Health Information) migration projects to Azure, ensuring compliance with healthcare data regulations (if applicable).
Knowledge of infrastructure security with a focus on IaC security best practices.
Experience in security assessments, penetration testing methodologies (may not require hands-on expertise), and security incident response procedures.
Excellent communication, collaboration, and presentation skills.
Ability to work independently and take initiative in identifying and addressing security risks.
Strong analytical and problem-solving skills.
Understanding of relevant data privacy regulations (e.g., GDPR, HIPAA) may be required depending on the project.

Certifications (Beneficial):
Microsoft Certified: Azure Security Engineer Associate
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Epic Certified System Administrators (ECSA)

Keywords: green card
Security SME -USC,GC,H4EAD only -Remote USA
ryan@nityainc.com
https://jobs.nvoids.com/job_details.jsp?id=2247276

ryan@nityainc.com
View All

12:20 AM 12-Mar-25

To remove this job post send "job_kill 2247276" as subject from ryan@nityainc.com to usjobs@nvoids.com. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to ryan@nityainc.com -

To

Subject
Message -

ryan@nityainc.com wrote:
From:

Nitya,

Nitya software solution

ryan@nityainc.com

Reply to:   ryan@nityainc.com

Job Title: Security SME
Location: Remote
 C2C
 USC,GC,H4EAD

Role & responsibilities:
The Information Security Lead will be responsible for providing leadership in the areas of Information Governance, Data Protection, and Cyber Security. This role involves developing and implementing policies and ensuring compliance with relevant legislation and standards where we operate. The Information Security Lead will play a crucial role in establishing a robust Information Security Governance framework, managing risks, and implementing effective security measures.

Responsibilities:
Review and assess security posture of Terraform configurations, Azure resources, and overall infrastructure design.
Identify potential vulnerabilities and recommend mitigation strategies.
Collaborate with the Azure Solution Architect to ensure security considerations are incorporated into the design phase.
Configure security controls in Azure for access management (Azure Active Directory), data encryption, threat protection, Web Application Firewall (WAF), and activity logging, following documented best practices.
Participate in security discussions with stakeholders and provide recommendations for minimizing risks and ensuring compliance with security policies and regulations (including relevant data privacy regulations).
Maintain a focus on continuous learning to stay up-to-date on the latest cloud security threats, vulnerabilities, and best practices for securing cloud environments, proactively identifying and mitigating potential risks.
Oversee and potentially conduct regular security assessments of the cloud environment (penetration testing may require collaboration with external specialists).
Collaborate with the Technical Lead to implement security controls during infrastructure deployment using Azure security features and IaC security best practices.
Work with DevOps teams to integrate security considerations into the development and deployment pipeline.
Manage compliance with industry security standards (e.g., ISO 27001) (may vary depending on project requirements).
Develop and implement a compliance strategy for the cloud project (may vary depending on project requirements).
Promote awareness of security policies and procedures within the project team.
Investigate suspected security incidents and manage security incidents according to established procedures.
Provide reporting on security risks and mitigation efforts to relevant stakeholders.

Qualifications:
Strong understanding of cloud security principles and best practices (secure design principles, access controls, data encryption, threat protection, incident response, web application security).
In-depth knowledge of Azure security features and configuration options (Azure Active Directory, Azure Security Center, Azure Key Vault, Azure Defender for VMs/Cloud Apps, Azure WAF).
Participate in and lead EPIC (Electronic Protected Health Information) migration projects to Azure, ensuring compliance with healthcare data regulations (if applicable).
Knowledge of infrastructure security with a focus on IaC security best practices.
Experience in security assessments, penetration testing methodologies (may not require hands-on expertise), and security incident response procedures.
Excellent communication, collaboration, and presentation skills.
Ability to work independently and take initiative in identifying and addressing security risks.
Strong analytical and problem-solving skills.
Understanding of relevant data privacy regulations (e.g., GDPR, HIPAA) may be required depending on the project.

Certifications (Beneficial):
Microsoft Certified: Azure Security Engineer Associate
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Epic Certified System Administrators (ECSA)

Keywords: green card 
Security SME -USC,GC,H4EAD only -Remote USA
ryan@nityainc.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at me@nvoids.com

Time Taken: 0

Location: ,