Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

Senior Cloud Security Engineer
Company Interos
Location Arlington, VA or Remote
Preferred GIAC Certifications GCLD, GWEB, GCPN, GPCS, GCIA, GCIH
Travel 5%
Salary Not provided
Contact Name Bryan Scarbrough
Contact Email bscarbrough/at/
Expires 2021-11-06

Job Description

Interos is seeking a Senior Cloud Security Engineer with experience at an enterprise level in cloud architecture, policy, controls, business continuity, and automation, including Cloud formation, scripting, and AWS. Reporting to the Engineering Lead, CISO, the role will specialize in AWS services and serve as a liaison between the Cybersecurity and Dev-Ops teams for security management of Cloud Architectures. You will work in our cloud environment and be asked to deliver novel and innovative solutions to help grow the business. The ideal candidate will have a strong technical background and have hands-on technical experience with various cloud platforms.

Essential Functions/duties:
- Architect, build and maintain security controls in our Cloud environment.
- Performing Cloud Security Assessments of Cloud platforms/environments using industry standard frameworks such as ISO and NIST.
- Identify gaps in our security posture and prioritize remediation efforts
- Develop design patterns, standards and best practices for Cloud security.
- Support our engineering teams in developing secure Cloud infrastructure.
- Drive implementation of countermeasures, mitigations, and containment.
- Manage and improve infrastructure level security capabilities e.g. firewalls, DDoS protection, network isolation, IAM, and other access controls.
- Work closely with various team members to refine the risk strategy for cloud architecture.

Minimum Qualifications:
- BS Degree in Computer Science or equivalent technology experience plus 5+ years of experience in Cloud Security Engineering.
- 2+ years experience with Amazon Web Services and demonstrated knowledge of services and controls.
- Network technologies and connectivity options to AWS cloud
- Proficiency with at least one of the following languages: Python, Go, JavaScript.
- An understanding of data encryption methods and AWS mechanisms to implement these controls.
- Comfortable with DevOps style tools like Kubernetes, Terraform, GitLab, etc.
- Experience analyzing computer security incidents and recommending measures that appropriately respond to computer security incident activity.
- Ability to document findings, architectural diagrams, and project roadmaps.

Core Competencies:
- Customer focused
- Self-motivated
- Results driven
- Entrepreneurial mindset; flexible and adaptable, able to learn new things quickly.