Cloud Security Engineer — Azure, Risk & Incident Response

Bham-Corporate Office
Birmingham, AL 35203, USA

Cloud Security Engineer

Location: Birmingham, AL

VIVA HEALTH, part of the renowned University of Alabama at Birmingham (UAB) Health System, is a health maintenance organization providing quality, accessible health care. Our employees are a part of the communities they serve and proudly partner with members on their healthcare journeys.

VIVA HEALTH has been recognized by Centers for Medicare & Medicaid Services (CMS) as a high-performing health plan and has been repeatedly ranked as one of the nation's Best Places to Work by Modern Healthcare.

• Comprehensive Health, Vision, and Dental Coverage
• 401(k) Savings Plan with company match and immediate vesting
• Paid Time Off (PTO)
• 9 Paid Holidays annually plus a Floating Holiday to use as you choose
• Tuition Assistance
• Flexible Spending Accounts
• Community Service Time Off
• Life Insurance and Disability Coverage
• Employee Wellness Program
• Training and Development Programs to develop new skills and reach career goals

The Cloud Security Engineer will provide cyber security expertise in the analysis, assessment, development, and evaluation of security in cloud-based environments. This position is responsible for keeping the cloud infrastructure current, making recommendations, and participating in the implementation and continuous improvement of technologies and services in cloud-based environments.

This role will provide support on Incident Response related to security incidents. This individual will provide support and guidance to others on security strategies, processes, and technology. This involves collaborating with analysts, engineers, and dev ops to achieve continuous improvement in cyber defense and resiliency. This position will also provide management with risk assessments and security briefings to advise them of critical issues that may affect customers, members, or corporate security objectives.

• Aid in the development of security plans and policies.
• Recommend and implement protections.
• Partake in efforts that shape the organization’s security policies and standards for use in cloud environments.
• Monitor for and investigate security breaches.
• Interpret security and technical requirements into business requirements and communicate security risks to stakeholders.
• Collaborate with application developers and other teams to deliver creative solutions to difficult technology challenges and business requirements, utilizing an adept understanding and experience with cloud infrastructure and cloud technologies.
• Keeps current with trends in the Cloud and Infrastructure space, while always searching for ways to improve systems as technology advances.
• Responsible for thorough documentation of implementations.

• Bachelor’s Degree in Information Systems or related field – work experience may substitute for education requirement
• 5 years’ experience in a related field of work with at least 3 years in a security-focused role
• CCSP Azure or AWS or ability to obtain within the first year of employment
• Experience in cloud services, development, visualization, and maintenance
• Knowledge of Microsoft Azure foundation services related to computer, network, storage, content delivery, administration. and security, deployment and management, automation technologies
• Experience architecting, designing, and programming applications and ample experience in high level programming languages such as Java, Python, C++, Visual Basic, etc.
• Experience in performing risk assessments and vulnerability management
• Knowledge of firewall and intrusion detection/prevention protocols
• Familiarity using Azure Cloud Services
• Demonstrated analytical and troubleshooting skills necessary to constantly monitor systems to identify threats and vulnerabilities
• Demonstrated verbal and written skills necessary in executing the job duties which will require working with various teams and business roles, developing reports, and technical documentation
• Demonstrated team player as this role will be expected to work with multi-disciplinary teams
• Demonstrated ability working within deadlines and working well under pressure

• CISSP, CISM
• Knowledge of disaster recovery, computer forensic tools, technologies, and methods
• Dev Ops know-how building and deploying infrastructure with cloud deployment, build, and test automation technologies like Ansible, Chef, Puppet, Docker, Jenkins, Git Hub, etc.
• Familiarity in compliance and regulatory guidelines such as NIST, HIPAA, FISMA, etc.

Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws.

For further information, please review the Know Your Rights notice from the Department of Labor.