Cloud Security Engineer, Senior
Tampa, Florida, United States
- Provide cloud cybersecurity guidance and direction in the design, development and implementation of automated solutions, based on a set of standards and processes that enable CI/CD developers to easily apply cybersecurity and compliance services.
- Responsible for support of and coordinating with other Engineers, Architects, and teams in implementing a comprehensive cloud and application security program in a DevOps environment.
- Manage cloud infrastructure cybersecurity standards and procedures in accordance with audit and compliance teams.
- Member of the cloud Joint Validation Team; review and analyze cloud service provider artifact for completeness, consistency, compliance, and due diligence
- Interface with application and infrastructure engineers to ensure cybersecurity best practices are embedded in enterprise cloud environment.
- Develop cybersecurity strategic plans and roadmaps.
- Leverage DevOps tools to build, harden, maintain and instrument a comprehensive cloud-based cybersecurity orchestration platform to be used in product CI/CD pipelines.
- Validate cloud infrastructure projects align with cybersecurity and compliance best practices.
- Participate in cloud infrastructure design reviews.
- Lead cloud cybersecurity technology reviews
- Perform risk and vulnerability assessments of cloud IT and IS for accreditation; prepare risk assessment reports for submission to SCA and AO in accordance with DoD, USCYBERCOM, USSOCOM policies, procedures, and regulations.
- Coordinate, manage and facilitate cloud cybersecurity compliance processes with internal and external stakeholders to provide timely deliverables and rapid remediation.
- Identify, assess, and advise on cloud related cybersecurity compliance risks and controls.
- Provide cloud cybersecurity expertise at technical exchange meetings, reviews and briefings to leadership, customers, and contractor personnel.
- Identify, create and measure process and control improvement.
- Complete annual or periodic cybersecurity assessments of the cloud environment.
- Able to work on multiple projects and prioritize accordingly
Requirements
- Familiar with cybersecurity architecture design principles.
- Broad hands-on knowledge of firewalls, intrusion detection systems (IDS), data encryption and other standard cybersecurity techniques and practices.
- Strong experience in cybersecurity and information security and how it relates to all aspects of software/systems design and infrastructure.
- Hands on experience implementing cybersecurity solutions with a focus in Infrastructure as a Service (IaaS)/ Platform as a Service (PaaS) in an enterprise environment. Experience with AWS, Microsoft Azure and Google Cloud Platforms is considered a plus.
- Strong experience in cloud and application security domains.
- Familiarization with Federal Information Processing Standards (FIPS)-199, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, and DoD Cloud Security Requirements Guide
- Through IT cybersecurity experience preferably in the area of cloud implementation or maintenance.
- Experience OR deep knowledge of using containerization technology, including Open Container Initiative (OCI) compliant containers and OpenShift Container Platform (OCP)
- Strong experience designing, developing and deploying cybersecurity tools and technologies for cloud architectures.
- Experience with container cybersecurity solutions such as Twistlock and source code scanning solutions such as Fortify.
- Proficient in a Linux or UNIX based environment; experience in Red Hat Enterprise Linux (RHEL) is considered a plus.
- Extensive experience in implementing and enforcing application security and vulnerability management.
- Experience in DevOps and software engineering processes and procedures.
- Working knowledge of NIST Cybersecurity Framework and Cloud Security Alliance framework.
- Active TS/SCI clearance required
- Bachelor’s Degree
- 8+ year relevant experience
- IASAE Level III
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure CI/CD Clearance Clearance Required Cloud Compliance DevOps DoD Encryption Firewalls GCP IaaS IDS Intrusion detection Linux NIST PaaS Red Hat Risk assessment Risk Assessment Report TS/SCI Twistlock UNIX Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Senior Cyber Security Specialist jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs