Find a Job: Results

Back to Results

Jr Cloud Security Engineer

Location: Reston Region
Category: Information Technology
Employment Type: Direct Hire
Contact: itc.reston@hirestrategy.com

Direct hire, located in Herndon VA, salary from $75-90K

 

Primary Responsibilities:

  • Cooperate with Product Managers, Platform Leads, and Information Security teams, to create and implement cloud security solutions.  Familiarity of cloud security services such as AWS Identity and Access Management, Inspector, Cloud formation, VPCs, etc. is crucial
  • Complete architecture calculations across projects, assess use of security solutions to sustain private cloud and public cloud facilities
  • Plan with engineering, service and business teams to make technology roadmaps
  • Draft and progress security architectures for cloud and cloud/hybrid based schemes
  • Have a firm understanding of the offerings from major cloud providers including both Amazon Web Services (AWS) and the Microsoft Azure platforms; based on business requirements, design and implement cloud-native architectures and designs that will allow those requirements to be met with a minimal degree of risk to Company and with appropriate security controls present
  • Act as the ambassador and technical representative for Enterprise Security while engaging with other technical leaders throughout Company in design and implementation of cloud and cloud/hybrid based implementations and solutions.
  • Work with Engineering, Infrastructure Services, and Application Development organizations to choose appropriate technology solutions and facilitates complete integration into the Company environments.
  • Develop standards in partnership with Engineering, Infrastructure Services, and Application Development
  • Identify, recommend, coordinate, and/or conduct informal/formal training sessions to deliver timely knowledge to support teams regarding technologies, processes or tools
  • Develop and execute strategies to increase Cloud Security knowledge throughout the enterprise, as well as developing and mentoring more-junior security analysts and engineers
  • Provide expertise and direction relative to processes, projects, issues and initiatives regarding cloud security implementation
  • Support a diverse range of information technology-enabled business activities through the establishment of threat-informed information security requirements
  • Develop and refine global information security technical standards and guidelines
  • Help manage the acquisition and procurement of technologies best designed to meet Company’s enterprise security requirements
  • Serve as a subject matter expert for all Company Group companies, performing intra-company advisory services related to security architecture strategy and technology implementation
  • Review and advise on security policy, operational design and architectural documentation

 

Qualifications:

  • Minimum of 2 years of experience in information security or a mixture of related technical fields
  • Prefer minimum of 1 years of experience with Cloud platforms such as Amazon Web Services (AWS)
  • Experience architecting solutions within Amazon Web Services (AWS) and, preferably, other cloud providers
  • Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within IaaS, PaaS, SaaS, and other cloud environments
  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms
  • Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies
  • Experience with deployment orchestration, automation, and security configuration management
  • Experience developing and refining threat-informed defense-in-depth security architectures
  • Advanced knowledge of prevalent offensive cyber security tactics and techniques (vulnerability exploits and counter-measures, remote access Trojans and related persistence techniques, social engineering, etc.)
  • Advanced knowledge of Advanced Persistent Threat (APT) tactics and methodologies
  • Advanced knowledge of prevalent operational security tactics and techniques (incident response and recovery from breaches, vulnerability exploits and countermeasures, remote access trojans and related persistence techniques, social engineering, etc.)
  • Programming or scripting language knowledge is desired but not required
  • Exceptional communication and advocacy skills, both verbal and written, with the ability to express complex and technical issues in clear and concise language
  • Ability to collaborate and communicate effectively and tactfully with both business-oriented executives and technology-oriented personnel
  • Ability to negotiate compromise between diverse parties with competing equities
  • Ability to work independently in unstructured situations
  • Ability to manage multiple projects simultaneously that involve key stakeholders across a globally-distributed and federated enterprise
  • Ability to travel internationally as required, up to 10%
  • Eligible to work in the USA