Sr. Cloud Info Sec Engineer - MDI Group

Senior Cloud Security Engineer

We are open to candidates who have expertise in one or more of the following areas of security:

Cloud /AWS

Web Application Firewalls (WAFs)

Summary:

• Assists in leading the Information Security Team in the design and implementation of security solutions to ensure the appropriate guidelines, policies and procedures are in place to adequately address threats and vulnerabilities.

For Cloud Security focus:

• Oversee cloud security strategy and implementation.
• Deploy, configure, and assess network and security configuration procedures in a PaaS/IaaS environment.
• Determine, prioritize, evangelize, and implement security related requirements.
• Use security tools and services to audit environment, detect issues and coordinate remediation of issues.
• Use security tools, services, and implementation best practices to perform data protection and access control.
• Maintain security posture with focus on HIDS, security group controls, NACLs, and IAM.
• Perform log and FIM alert analysis to detect intrusions and attacks conducted against cloud components.
• Work in conjunction with DevOps team to automate and streamline the security processes and procedures.
• Design, maintain, and act as SME on tools and services that provide security controls in an AWS environment.

Must Haves:

• 3-5 years of experience in administration of cloud infrastructure (AWS, Azure, Google, Openstack etc).
• 3-5 years of experience working with AWS services such as GuardDuty, Key Management, Inspector, S3, CloudFormation, CloudWatch, Cloudtrail, AWS Config, EC2, VPC, IAM
• Hands-on experience on Amazon AWS cloud infrastructure
• Experience configuring AWS security groups and NACL’s
• Strong understanding of PaaS/IaaS and software defined networking
• Strong understanding of cloud networking, operations, automation, and orchestration.
• Previous IT experience in an infrastructure, networking, or software development role

Desired/preferred:

• Information Security certification such as AWS Certified Security, CCSP, or CCSK
• AWS Architect, Developer, or SysOps Administrator certification
• Experience with encryption, FIM, and vulnerability scanning solutions.
• Experience configuring and managing OSSEC, WAZUH, Tripwire
• Experience implementing automation to enable a continuous deployment methodology
• Ability to translate traditional information security best practices and defense in depth approaches to virtualized/cloud based environments.

For WAF focus:

• Oversee WAF and Bot mitigation strategy and implementation.
• Deploy, configure, and maintain application security features of WAF and Bot detection technologies
• Determine, prioritize, evangelize, and implement security related requirements for new and existing applications.
• Perform alert analysis to detect attacks against web applications and respond accordingly.
• Work in conjunction with application development teams to tune and configure WAF rules and attack responses.

Must Haves:

• Strong experience working with WAF/Bot mitigation technologies such as Imperva, F5 WAF (ASM/LTM), Akamai Site Defender, Akamai Botmanager
• Strong understanding of Web Application vulnerabilities (OWASP) and attacks.
• Strong proficiency in scripting (Perl, Python, etc.)

Desired/preferred:

• Information Security certification such as SANS
• Experience working with web development languages and frameworks (Java, Javascript, AngularJS, etc)
• Knowledgeable about Penetration Testing techniques