Contractor Cloud Security Engineer

You will:

• Responsible for the day-to-day management, operation, and optimization of client s core IT systems and cloud infrastructure.
• Work within a DevSecOps framework to ensure the secure and efficient provisioning, configuration, and automation of cloud resources.
• Create and update procedures and standards to build and manage cloud systems.
• Serve as the escalation point for high-priority production issues.
• Automation of security configurations, manual processes and procedures, and provisioning and configuration of cloud resources is required.
• The use of industry DevSecOps best practices and regulatory policies defined by the organization and its partners.
• May access Federal Tax Information. (Background checks requirements, per IRS Publication 1075, apply.)

Required Skills and Experience:

• 10 years of information security and engineering experience
• Bachelor s degree in Engineering, Security or Technology related major, or closely allied field.
• 3-5 years of experience as a Cloud Security architect and/or management role or related position.
• Strong understanding of cloud computing technologies including, Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
• Proficient in designing security controls, security tools needs/assessment and technology services.
• Experience working with containerized and micro architecture platform as per the industry best practices.
• Hands on experience in designing and implementing Security technologies such as SIEM, network firewalls, host-based security, and security configuration.
• Experience in integrating Content Delivery Network (CDN).
• Familiarity with Cloud Security Posture Management and vulnerability management tools.
• Experience working with Managed Detection & Response (MDR) providers in setting up and investigating security alerts.
• Experience with security incident or breach investigation and development of strategies to respond to and recover from an incident or breach.

Desired Skills and Experience:

• Experience in a Health Exchange or its partners.
• CompTia Security+, CISSP or other industry recognized certifications.
  • Must provide copy/ies of all valid certifications.
• Experience with administering serverless, cloud-based enterprise applications and environments.
• Experience with administering Linux and Microsoft server environments.
• Experience and general understanding of object-oriented coding (Java, Python, .Net, etc.).
• Familiarity with CSPM and Vulnerability management tools.
• Familiarity with standards such as OWASP, IRS 1075, CMS MARS-E. NIST, and FISMA
• Experience with the following Software and Services:
  • Cloudflare
  • Azure Sentinel
  • Tenable Nessus
  • Rapid7 Insight Vulnerability Management
  • Microsoft Defender
  • Microsoft Azure Cloud
  • Palo Alto PrismaCloud
  • Palo Alto Firewall
  • Palo Alto Panorama
  • Jira
  • Confluence
  • SolarWinds Orion
  • SolarWinds ServiceDesk
  • PowerShell
  • GitHub