Vacancy expired!
Cloud Security Engineer
As a Cloud Security Engineer, you will advise on cloud security best practices and configure, review, and maintain the Azure security environment for the Firm. You will make recommendations regarding policy and exceptions for the cloud security environment. Additionally, you will be responsible for researching, implementing, and operating security solutions and related tools to aid the security efforts of the Firm both in the cloud and on-premises. As part of the Enterprise Security team, you will work to protect the confidentiality of firm and client data by accomplishing the following tasks:Researching and advising the department regarding appropriate security controls for the Cloud environment as a subject matter expert for Azure security.Monitoring technical developments in Azure and adapting recommendations to reflect the changing architecture.Collaborating with members of the Enterprise Security Team to ensure other security tools are appropriately configured to include logs, reporting, alerts and other relevant data from Azure or other Cloud systems.Collaborating with Global Technology personnel as needed to ensure application and development tools within Azure are appropriately configured to meet the firm s security standard.Providing advice as needed and researching additional compensating controls to ensure business objectives are met.Designing and implementing security solutions that enforce best practices for cloud operationsCompleting projects on various issues when needed.Identifying, prioritizing, and implementing security-related requirements, and enabling project teams to deliver secure IT solutions through effective risk management and threat-modelingAs a Cloud Security Engineer, you will be expected to apply your organizational and communication skills while displaying a positive, high-energy attitude. The successful Cloud Security Engineer must have experience with and knowledge of Azure Services such as Compute, Storage, Networking, Database, Management Tools, Security, Identity and Compliance, as well as experience with Azure Portal, Azure Powershell, Azure CLI, Azure Event Hub, and/or Azure Identity Governance. The ideal candidate will also have a knowledge of information security best practices, and a good understanding of OS concepts, process management, and resource scheduling in Windows and Linux environments. The Engineer must have an understanding of the components in the Hadoop ecosystem (e.g., Apache NiFi, Apache Storm and Apache Kafka), expertise implementing security solutions in public cloud IaaS/PaaS, and familiarity with systems integration, SOAR products, and data log formatting. We are looking for proficiency in several security technologies including data loss prevention, encryption, cloud access security brokers, identity and access management, micro-segmentation, multi-factor authentication, endpoint protection, SIEM, and perimeter defenses. Hands-on experience in working with Hadoop distribution platforms like Hortonworks, Cloudera, MapR, and others is a plus, and the successful candidate will learn and stay ahead in finding security issues in cloud and big data platforms and implement solutions to keep applications and data secured at all times.A Bachelor s Degree in Computer Science, Information and Technology and Computer Engineering, or a related engineering/computer field is preferred, and a current Microsoft Certified Professional is a plus. A Microsoft Azure certification is required for this role. Successful candidates will be willing to obtain additional security-related degrees as deemed helpful by the firm.A minimum of five (5) years of experience in an engineering role using service and hosting solutions such as private/public cloud IaaS, PaaS, and SaaS platforms, and a minimum of ten (10) years of related professional experience are required. Strong experience with Azure and security policies, and experience in setting up enterprise level account structure and security models in Azure, are desired. Experience with Azure Active Directory, RBAC and policies is required.Vacancy expired!