Senior Cloud Security Engineer (Remote)

We are looking for a candidate with a proven background in defining and implementing security engineering solutions. As the Senior Cloud Security Engineer, you will provide expert advice and lead the design and implementation of the security components in hybrid cloud environment including Azure and GCP. In this role, you will lead implementing solutions with a process-driven view, as well as scheduled maintenance and/or updates to existing structures.

• Plan and design methods for the optimization and integration of various forms of technology systems or policies and high-level principals.
• Apply varied engineering and design theories to produce robust, integrated functioning of various systems, technology interfaces, and/or overarching information policies and high-level principles.
• Assess the functioning of overall technology and communications systems and end-to-end processes and look for ways to upgrade and optimize systems and processes in the future.
• Work across the architecture and technology organization to ensure effective implementation, architecture compliance, and conflict resolution.
• Implement selected security solutions in the Azure and GCP Cloud environments. This would include security related policy, deployment of end-point controls, and securing Kubernetes.
• Build the DevSecOps program vision and strategy covering all aspects from architecture, design, development, and deployment.
• Build and publish application security standards, design patterns and secure coding standards for web and mobile security
• Build and implement API Security vision and strategy including protection capabilities for securing APIs throughout their life cycle
• Establish encryption standards for the organization
• May participate in other ad-hoc projects to upgrade or install cloud components, workstations, networks, or software, or to assess and optimize overall functioning of technology, data, and processes.
  

• Minimum of 7years of experience in Cybersecurity and/or related field.
• Bachelor's degree or equivalent work experience, Azure/ GCP certifications
• Experience designing, building, and implementing security architecture within cloud environments (AWS, Azure, GCP, etc.) Azure and GCP preferred.
• Proficient knowledge and use of Terraform for automation.
• MS Defender, Sentinel, CrowdStrike, Rapid7, Imperva, Palo Alto Firewalls and native cloud firewalls
• Experience with industry security frameworks (CIS, NIST)
• Foundational and functional understanding of how APIs works (RESTful)
• Understanding of API and Service Mesh security - specifically on common controls for API security (SSO, OAuth, Threat Protection)
• Applicable security certifications desired; CISSP, CEH, GIAC, GSEC, or CSSLP or advanced degree in InfoSec.
• Azure/GCP Architecture certification preferred.