Position: Cloud Security Engineer Consultant
Location: Holyoke, MA (Onsite/Remote)
Duration: 12 Months (Contract)
Job Description:
Our client is seeking a highly skilled Cloud Security Engineer consultant with the following skills:
• Working experience with cloud security platforms such as CNAPP, CSPM, CIEM, and CWPP solutions.
• Strong understanding of cloud computing, containerization, and Kubernetes orchestration security
best practices.
• Experience working with CI/CD tooling and implementing security controls in the pipelines
• In-depth knowledge of cloud security principles and compliance standards relating to the cloud,
containers and Kubernetes.
Primary Responsibilities:
Threat Modeling:
• Ensure seamless integration of threat modeling activities into the CI/CD pipeline to assess security
risks at every stage of the software development lifecycle.
• Establish a feedback loop between threat modeling results and development teams, providing
actionable insights and recommendations to address identified threats effectively.
Risk Assessment:
• Evaluate and identify potential risks associated with cloud services and configurations, including
unauthorized access, misconfigurations, and service outages.
• Conduct assessments to ensure compliance with regulatory requirements, as well as adherence to
cloud provider security best practices and frameworks (CIS Benchmarks, AWS Foundational Security
Best practices).
• Develop risk mitigation strategies and recommendations tailored to the cloud environment, such as
implementing access controls, encryption mechanisms, and monitoring solutions, in collaboration with
cloud architects.
Minimum Requirements:
• 5+ years working experience with AWS technologies, and overseeing migrations from on-prem to
AWS following security best practices.
• 5+ years working experience in container orchestration platforms such as Amazon Elastic Container Service (ECS) Fargate and Amazon Elastic Kubernetes Service (EKS).
• Undergraduate Degree in Cyber Security, Information Technology, or Computer Science, or 4 years of equivalent experience in Information Technology.