Cloud Security Engineer at Remote, Remote, USA |
Email: [email protected] |
From: Zara, TechRakers [email protected] Reply to: [email protected] Client -WatersCorp, Boston MA Day 1 Onsite role Any visa cloud security eng: Responsibilities Collaborate with operations and engineering teams to implement and tune cloud-native security monitoring, tooling and reporting Define cloud security policies, standards, and best practices Design cloud-based network traffic flows to drive anomaly detection capability Mentor engineering and operations staff on unique cloud-based security controls Develop tools to improve cloud specific anomaly detection requirements Foster a culture of security by partnering with solutions architects to balance key performance and security Perform regular reviews of cloud infrastructure for security, and cloud best practices. Develop threat models to identify risks and prioritize improvements to our architecture. Drivetheadoption of Authentication and Authorization reference architectures for managing cloud infrastructure. Educate peers on applyingthelatest cloud native technologies when developing new services, systems and applications. Contribute to a secure/compliant cloud-native service catalog Maintain Compliance across our Production, Development andCorporatesystems hosted inthepublic clouds Collaborate with engineering and operations teams toward implementing controls and processes that address identified gaps Qualifications BA/BS degree in Computer Science OR equivalent practical experience 8+ years working in IT, Engineering, DevOps, DevSecOps, or Security domains. Minimum 1 year of experience with active compliant environments, eg PCI-DSS, HITRUST, FEDRAMP or ISO 27001 AWS or other Cloud Certifications Knowledge of risk assessment tools, technologies and methods At least 3 years implementing services on cloud infrastructure. Sound knowledge of AWS with experience implementing, reviewing, and strengthening new or existing deployments specifically with technologies like IAM, Guard Duty, and WAF. Experience with Infrastructure-as-Code products like Terraform and CloudFormation. Deep understanding of security principles including encryption, authentication, etc. Thorough understanding of networking protocols such as TCP/UDP, SSL/TLS, IPSec, etc. Preferred Qualifications: Designing secure networks, systems, and application architecture Basic encryption theory and key management (PKI) Host or Network Based Intrusion Detection Tools (HIDS/NIDS) Compliance Automation Relevant security qualifications (CISSP, GSEC, AWS-SAA, AWS-SEC) |
[email protected] View all |
Thu Oct 27 19:49:00 UTC 2022 |