Senior Cloud Security Engineer - Dulles, VA - Georgia IT Inc.
Dulles, VA
About the Job
Job Title: Senior Cloud Security Engineer
Location: Dulles, VA
Job Type: Direct Hire
Salary: $130,000
Description
This position will work closely with a high visibility team that is at the forefront of transitioning applications and services to the cloud while solving security concerns at a large scale. We are looking for an experienced Cloud Security Engineer to be a leader in addressing security issues inherent to using a public cloud provider. We look for people that are exceptionally imaginative, collaborative, and truly excited about our mission: to inform, entertain, and connect the world... and have a dogged attitude to keep anyone who would try and keep us from obtaining that mission at bay.
This position requires a person who can see the bigger picture and identify security flaws and vulnerabilities in technology, applications, and services. We need someone to think both like an attacker and a defender. We're a business, you'll need to identify issues that really matter and push teams to implement the right security controls. The successful candidate will have a proficiency in technical knowledge as well as a information security concepts specifically cryptography, network security, security operations and incident response. Candidates should also possess an understanding of identity and access administration to build in secure identity, authentication, and authorization systems for secure use of the cloud. Concepts of federation, web services security, and single sign on should be understood.
Responsibilities
Location: Dulles, VA
Job Type: Direct Hire
Salary: $130,000
Description
This position will work closely with a high visibility team that is at the forefront of transitioning applications and services to the cloud while solving security concerns at a large scale. We are looking for an experienced Cloud Security Engineer to be a leader in addressing security issues inherent to using a public cloud provider. We look for people that are exceptionally imaginative, collaborative, and truly excited about our mission: to inform, entertain, and connect the world... and have a dogged attitude to keep anyone who would try and keep us from obtaining that mission at bay.
This position requires a person who can see the bigger picture and identify security flaws and vulnerabilities in technology, applications, and services. We need someone to think both like an attacker and a defender. We're a business, you'll need to identify issues that really matter and push teams to implement the right security controls. The successful candidate will have a proficiency in technical knowledge as well as a information security concepts specifically cryptography, network security, security operations and incident response. Candidates should also possess an understanding of identity and access administration to build in secure identity, authentication, and authorization systems for secure use of the cloud. Concepts of federation, web services security, and single sign on should be understood.
Responsibilities
- Building successful business and technical relationships with technology teams, driving the security measures needed for a successful public cloud deployment
- Ensuring privacy and compliance of our data in the public cloud
- Utilizing technical expertise with security and compliance aspects of public cloud provider technologies, especially AWS, as well as broad know-how with solutions to secure private data centers
- Subject matter expertise on security as it relates to consumer applications and services and how they translate to scaling securely in the cloud
- Gathering security requirements from partners and funneling ideas back to our technology teams building environments that make security better for our products
- The ideal candidate will possess customer facing skills that will allow them to represent ITSec well within a customer's environment and drive discussions with senior personnel within the company, as well as a technical background that enables them to easily interact and give guidance to software developers, security teams and architects.
- The future incumbent should also have a demonstrated ability to think strategically about business, security, and technical challenges.
- This position will own security discussions around cross divisional engagements, and function as the primary interface for ITSec to the business development and technology team on security and compliance discussions.
- Design and coordinate secure cohesive public cloud environments that involve working with multiple teams across the organization
- Build security utilities and tools for internal use that enable you and your fellow Security Engineers to operate at high speed and wide scale
- Recognize, adopt, and instill the best practices in security engineering fields throughout the public and private clouds including development, cryptography, network security, security operations, and incident response
- Provide subject matter expertise on architecture, authentication and system security
- Develop and interpret security policies and procedures for secure cloud use
- Knowledge of system security vulnerabilities and remediation techniques
- Direct experience with Amazon Web Services including EC2, VPC, S3, and CloudFront, including proficiency with utilizing the APIs to improve operational efficiency
- This position may periodic on-call responsibilities
- Strong knowledge of web protocols and an in-depth knowledge of Linux/Unix tools and architecture
- Well-rounded background in host, network and application security
- Experience architecting the security aspects of infrastructure solutions with specific recommendations on security controls and encryption
- Experience architecting or deploying Cloud/Virtualization solutions in enterprise customers. AWS specific experience a bonus
- Experience building automated tools in Python, Perl, Java, and/or C/C++
- Excellent written and oral communication skills
- Extensive knowledge of internet security issues and threat landscape
- Advanced understanding of various protocols and ability to secure them
- Understanding of system and kernel level performance and tuning for maximum efficiency
- BS degree in Computer Science, MIS, Computer Engineering, or 5+ years equivalent technology experience
- 5 years of experience with focus in areas such as systems, network, and/or application security
Source : Georgia IT Inc.