Cloud Security Architect job vacancy

Vacancy expired!

Mastech Digital provides digital and mainstream technology staff as well as Digital Transformation Services for all American Corporations. We are currently seeking a

Cloud

Security Architect for our client in the

Telecommunication domain. We value our professionals, providing comprehensive benefits and the opportunity for growth. This is a

Contract position and the client is looking for someone to start immediately.

Duration: 18+ Months Contract

Location: San Jose, California

Role: Cloud Security Architect
Primary Skills: Cloud Security
Role Description: The

Cloud Security Architect must have at least 5+ years of experience. As the Cloud Security Architect, you will be responsible for developing security assessment and mitigation plans for existing or new cloud-based solutions in order to lead and deliver Cloud Risk and Cloud Hygiene Assessments. This will include threat modeling, end-to-end security evaluation, design and development of cloud security policies, standards and procedures for various types of public/private/hybrid clouds.

You will work in a collaborative environment with multiple cross functional teams.

What will you do?

- Evaluate security postures and provide recommendations for improvement and risk reduction for data centers, hybrid and Cloud platforms (build threat models, design reviews, document mitigation techniques, apply security design patterns, code review).

Routinely work on multiple projects from small, focused security enhancements to large infrastructural projects.

- Support projects at various levels, from ground level up to fully involved projects, be able to dive into existing environments or help with the security design and requirements of a new project at the ground level by evaluating the end-to-end environment of different types of services (SaaS, IaaS, PaaS).

- Continually evaluate new threats and attacks to identify the impact on business and help to develop and implement appropriate security controls

- Apply cryptographic primitives and protocols for authentication, authorization & data protection

- Implement security modules, tools and code snippets when needed.

- Develop best practice, policies, and architectural documentation

- Train and coach engineering teams to integrate CI/CD pipeline tools, test plans and vulnerabilities assessment tools for Cloud

Must Have Skills (Most Important):

- Bachelor s degree in Computer Science, Engineering, Mathematics or related field

- Excellent knowledge of cryptographic Algorithms PKI, authentication protocols, transport layer security, OID, OAuth, SAML, etc.

- Demonstrated knowledge on threat landscapes and threat modeling, security threat and vulnerability management, and security monitoring for datacenters, hybrid and Cloud deployments (AWS, Google Cloud Platform, Azure)

- Broad technical experience in several security disciplines including endpoint and platform (Unix/Linux/Windows, mobile) controls, encryption/tokenization, identity and access management, data loss prevention/protection, antivirantimalware, intrusion detection/protection, logging and monitoring, and security tooling integration in complex environments

- Hands-on experience with Security Services and tools in AWS such as IAM, GuardDuty, Macie, S3, CloudTrail, AWS Config, CloudWatch, KMS, compute (i.e., EC2, GCE), storage (volume/object), networking (VPC, IDS/IPS, firewall, reverse proxies, Load Balancers, Security Groups/List, etc.), and AWS Inspector, SDK/CLI.

- Hands-on experience in DevOps tools (Jenkins, Jira, Git lab, Ansible); Development - Languages (Java, JavaScript, Python, Bash); Configuration languages/IaaC (JSON, CloudFormation Terraform)

- Extensive knowledge with Docker, ECS, Kubernetes, and Containers security

- Experience advising on security architectures for meeting industry standards such as SOC, PCI, ISO 27001, FedRamp, and NIST/DoD frameworks, etc.

- Excellent communication (both verbally and in writing), organizational, and experience translating business goals into technical security deliverables

- AWS Associate or Professional certification (Solution Architect and Security Speciality) or a willingness to obtain within 6 months.

Preferred Qualifications:

- Worked with engineers and development teams to ensure that architecture solutions are compliant with security frameworks, such as NIST, FedRAMP, ISO 27001/27002, PCI, etc.

- Focused on developing, implementing, and operationalizing cloud solutions that are highly available and resilient by utilizing best practices in systems engineering, network engineering, and multi-region design strategies.

- Helped develop self-service and automated tooling to help applications teams move fast yet provided the guardrails to ensure the quality and security of systems.

- Worked with oversight teams (e.g., privacy, legal, and compliance stakeholders) to develop enterprise-level information security compliance policies that address purpose, scope, and policy directives for Cloud environments

- Designed and contributed to security architecture processes that enable the enterprise to develop and implement secure solutions and capabilities that are clearly aligned with the business, technology, and threat drivers

- Participated in application and infrastructure projects and other business initiatives to provide security-planning guidance with the following drivers: reduce risk, protect business applications while ensuring the highest level of data protection

- Recommended and managed transmission protection requirements for all environments (systems, applications, containers, etc.) such as VPC peering best practices, SSL certificate management, key pairs, etc.

- Participated in deep architectural discussions to build confidence and ensure success when building new and migrating existing applications, software, and services on AWS platform.

- Technical liaison between the engineering & support teams.

- Experienced with "on-premises to cloud" migrations and IT transformations with the aid of AWS solutions.

- Operational experience with network security appliances with a clear understanding of the architecture behind secure networks, DMZ's, NAT's, rule placement, VPN setup, and system maintenance.

- Designed network and application vulnerability assessment programs and testing methodologies.

- Performed technical risk assessments for enterprise systems and reported gaps and remediation actions.

- Reported findings and advised on remediation efforts.

- Assisted in preparing business application owners prior to external audits.

Education/Certifications:

- Bachelor s degree in Computer Science, Engineering, Mathematics or related field (minimum)

- AWS Associate or Professional Certification (Solution Architect and Security Specialty)

Education: Bachelor s degree in Computer Science, Electrical/Electronic Engineering, Information Technology or another related field or Equivalent

Experience: Minimum 5+ years of experience

Relocation: This position will not cover relocation expenses

Travel: No

Local Preferred: Yes

Note: Must be able to work on a W2 basis

Recruiter Name: Usha Devi
Recruiter Phone: (Ext: 2314)
Equal Employment Opportunity

Minimum Education Required: Bachelor

Years of Experience Required: More than 5 years

Vacancy expired!

ID	#41163735
State	California
City	Sanjose
Job type	Contract
Salary	USD Market Market
Source	Mastech Digital
Showed	2022-05-19
Date	2022-05-18
Deadline	2022-07-17
Category	Et cetera
Create resume

Job Details

Cloud Security Architect

Related jobs

»Cloud Security Engineer

»Security Officer - Retail

»Security Officer - Full Time

»Cleared Security Officer

»Security Officer - Downtown

»Director, Network Availability Operational Lead/Architect

»Security Officer