Sr Cloud Security Engineer
Our clients are the game changers, leaders and investors who fuel the global innovation economy. They are the businesses behind the next medical breakthroughs and the visionaries whose new technologies could transform the way people live and work. At The Company, we partner with diverse teams of passionate, enterprising professionals to bring our clients’ world‑changing ideas to life. The Sr. Cloud Security Engineer provides cyber security advisory services to business units, supports IT initiatives and business projects by recognizing security risks and implementing security controls within public and private cloud environments, in adherence to The Company’s security policies and standards. The Engineer engages IT teams to integrate new and existing security solutions, works on large, enterprise and mission critical projects, and implements security strategy and architecture to protect assets, manage risk and maintain compliance.
Key Responsibilities
Provide security design, implementation, monitoring and incident management for The Company’s private and public cloud environments. Conduct threat analysis, vulnerability assessments and penetration testing. Ensure compliance with GLBA, SOX, FFIEC Information Security requirements, NIST, CIS, PCI, ISO and other relevant frameworks. Mentor and influence cross‑functional teams and help establish security best practices across the organization.
Key Knowledge & Skills
* Deep understanding of security architectures, defense in depth, cloud and on‑prem security models and concepts—proficient in designing and deploying IaaS security solutions, preferably in AWS public cloud.
* Experience and working knowledge of network architecture, subnetting, TCP/IP protocols and OSI model layers.
* Understanding of international and U.S. laws and regulations impacting cyber security and personal data privacy, including GLBA, SOX and FFIEC Information Security requirements.
* Working knowledge of security frameworks and control references such as NIST CSF, CIS 20, COBIT, PCI DSS, OWASP, ISO 27000 family and NIST SP 800 series.
* Familiarity with security architectures and methodologies (Defense in Depth, Segmentation, Least Privilege, Zero‑Trust, Kill‑Chain, etc.).
Preferred Skills
* Excellent analytical and problem‑solving skills with empathy and effective conflict resolution; scripting skills (Shell, Python, Java, PHP, PowerShell, etc.) preferred but not required.
* Knowledge of government security standards and regulations including GLBA, SOX, PCI, COBIT, ITIL and various security architecture methodologies.
* Leadership qualities, desire to influence vertically and horizontally, mentoring ability, and excellent written and verbal communication skills.
Education and Experience
* Bachelor’s degree in Management Information Systems, Computer Science, Business or equivalent work experience.
* 7+ years in IT security—experience implementing, supporting or defining requirements for security tools such as WAF, SIEM, IPS, CASB, EDR.
* Experience with AWS public cloud services and security tools.
* Experience with Hashicorp Terraform and Sentinel.
* Experience with SIEM technologies.
* Experience with cloud technologies, specifically AWS.
* Preferred experience working in a security environment on AWS.
* Experience with Windows and Linux operating systems.
* Experience with firewalls and network IDS/IPS.
* Experience conducting vulnerability assessments, risk assessments and penetration testing.
Certifications
* Professional certifications such as CISSP, CISM, SANS GIAC, CISA, Security+, AWS Solutions Architect, AWS Security Specialist (or willingness to obtain within 6 months).
* Strong knowledge of networking and TCP/IP protocols or a networking certification such as CCNA.
#J-18808-Ljbffr