Lead Cloud Security Engineer

The purpose of Cybersecurity Engineering team is to provide outstanding and versatile security services to the enterprise. This position is for a Lead Security Engineer on the Cloud Security Engineering team. This position is focused on being a domain expert (SME) for Cloud Security Capabilities in AWS, Azure and GCP. As a SME, the Lead Cloud Security Engineer is responsible for analyzing sophisticated security issues to improve the overall posture of the company, evaluating new capabilities & ensure preparation for Production implementation.

Your Primary Responsibilities:

• Responsible for evaluating new technologies and services and working with our Architecture team to design and implement well-rounded security solutions.
• Find opportunities for automation eliminating manual, mundane activities and improving machine learning capabilities along with providing content for security playbooks.
• Proactively identify deficiencies in security services, propose plans for improvement and implement them.
• Maintain professional and technical process knowledge by keeping abreast of security standards.
• Provide new security capabilities through industry leading security tools or by creating custom tools as needed.
• Document security policies, controls, and processes, and develop runbooks and how-to guides for operational readiness of engineered solutions.
• Evaluate IAM requests from other groups and assure that least privilege is preserved.
• Evaluate and create cloud security baselines and implement monitoring to assure compliance.
• Provide expert guidance to stakeholder and internal clients

*
* NOTE:

The Primary Responsibilities of this role are not limited to the details above. **

Qualifications:

• Bachelor’s degree and/or equivalent experience
• 5+ years of industry security experience including 3 year in public cloud (AWS and Azure preferred)

Talents Needed for Success:

• Problem solving skills to resolve problems effectively and creatively while maintaining a high level of flexibility, professionalism, and integrity.
• Programming experience one or more of the following languages:
  Python, C#, C++, Power Shell, Bash, Terraform, and SQL as well as experience with GIT version control (GITFlow, Git Hub, Bit Bucket, etc.).
• Experience with delivering reliable, available, and high-performance enterprise-scale solutions.
• Experience with vulnerability management, SIEM, compliance to security baselines, and Identity and Access Management in the cloud and on-prem.
• Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing (NIST 800-53, ISO-27001, etc.).
• One or more of the following certifications:
  Cloud (AWS, Azure, Google Cloud Platform), CISSP, Security+.
• Demonstrated experience in Cloud Security tools such as Aquasec, Inspector, and Wiz a plus.