Cloud Security Engineer
Position Summary
The goal of information security is to protect the confidentiality, integrity, and availability of information assets. The information security team is responsible for defining and implementing security policy and standards and continuously monitoring for new threats. The Cloud Security Engineer is a hands-on technical role, responsible for securing cloud-based systems and applications.
Primary Responsibilities
The Cloud Security Engineer will:
- Design, implement, and maintain cloud security policies and procedures.
- Evaluate security products and vendors and provide recommendations.
- Implement, configure, and manage cloud security tools and services.
- Identify and remediate cloud security risks and vulnerabilities.
- Collaborate with other cloud engineers and developers to ensure compliance with cloud security standards and best practices.
- Perform security assessments of applications.
- Research and evaluate new cloud security technologies and trends.
- Monitor and respond to cloud security events and incidents.
Background of Candidate:
Working experience with the following technologies:
- Cloud native security services
- Static analysis
- CI/CD pipelines
- Cloud security posture management (CSPM)
- Cloud-native application protection platform (CNAPP)
- Vulnerability management
- Infrastructure-as-code (IaC)
- Privileged access/secrets management
- Security information and event management (SIEM)
Requirements:
- 5-7 years’ experience in a security engineering role, preferably in the insurance or financial services industries.
- Experience with AWS
- Bachelor’s degree or higher in Information Security, Information Systems, Computer Science, or equivalent.
- Ability to communicate effectively and professionally, both verbally and written.
- Security certifications a plus, such as CCSP, CSSLP, CISSP, ISSAP, ISSEP, GIAC.