Net2Source (N2S)Philadelphia, PA
Cloud Security Engineer is responsible for performing Operational Security tasks and procedures related to the Company's technology environment in the public cloud, specifically AWS (Amazon Web Services).
These tasks include the deployment, maintenance, administration and tuning of the Company's IT Security platforms and solutions.
The Cloud Security Engineer responsibilities in the cloud environment include but are not limited to:
Security Event Monitoring and Response
This is a new position for the Company.
The individual will matrix into and work closely with the following IT teams:
The existing Operation Security team responsible for the on-premise IT environment The DevOps (Cloud Operations) team The Security Policy and Architecture team
Other IT teams such as the Data Network Services team and Server Administration teams
Primary Duties & Responsibilities:
1.) Intrusion Detection and Security Event Monitoring & Response Perform day to day maintenance, administration and tuning of the Company's SIEM (Security Information and Event Management) and NIDS (Network-based Intrusion Detection) solutions for the cloud.
Investigate and respond to identified security events in the cloud environment. If required, execute the company's defined SIRP (Security Incident Response Process).
2.) Vulnerability Management Perform routine vulnerability scans of cloud-based systems using automated tools. Triage scan results and assist technical team in understanding and prioritizing identified vulnerabilities.
3.) Firewall/Proxy Management- Perform day to day maintenance and administration of cloud-based security tools that control, restrict proxy and/or log network traffic within cloud environment and to/from cloud environment.
4.) Encryption Key Management Perform all required tasks related to the encryption key lifecycle (e.g. key generation, key rotation, etc.) in support of the Company's encryption key management policies.
5.) Create and maintain appropriate documentation and reports related to security operations in the cloud, including metrics, runbooks, procedures, and processes.
6.) Participate in enterprise IT security projects and initiatives as assigned.
8 10 years IT experience of 'hands on' security and related technical and operational responsibilities.
Broad level of knowledge of IT and IT security concepts (e.g. network/perimeter security; security event monitoring; vulnerability assessment; intrusion detection and response; encryption technologies; and Internet content monitoring/filtering; Windows; Unix; web servers; web services; etc).
Significant knowledge of Cloud Computing concepts and security frameworks, specifically IaaS (Infrastructure as a Service). Knowledge of AWS is a must.
Knowledge of any or all of the following is preferred:
Splunk, Alert Logic, Software Firewall Appliance.Experience with full lifecycle of security software and solutions, including product research and evaluation; testing; selection; deployment; and administration in support of security program.
Experience with automating the deployment and administration of hosts through scripting using tools such as CloudFormation, Shell, PowerShell and Chef.
Extended debugging and systems analysis skills to identify and quickly resolve/mitigate issue.
Ability to effectively work with software vendors and MSSP (Managed Security Services Providers).
Strong desire to learn new technologies and the ability to help define and continuously improve IT processes.
Highly motivated and able to work independently. Significantly 'self-sufficient' and comfortable making recommendations and decisions with less than perfect information.
Strong interpersonal and relationship building skills. Excellent time management skills to effectively meet multiple objectives. Strong analytical, process and influence skills.
Highly flexible, resilient and pragmatic. The desire, commitment and ability to be a team player. Possess a level of ownership and leadership to coordinate or action projects across multiple teams and drive to a successful conclusion.
Strong written and verbal communications skills.
(2) AWS Certified - Associate Level
¿Te interesa este puesto?