Associate Principal, Cloud Security Engineering

WILL SPONSOR H1BCAN BE FULLY REMOTE IF LOCATED IN THESE STATES: IL, TX, FL, GA, MA, MD, MN, NC, NJ, NY, DC, and WIA prestigious financial firm is on the search for an Associate Principal, Cloud Security Engineering. This position will focus on cloud security testing, blue team testing, cloud security assessments, application testing, etc. This person will need experience with Linux/Windows, AWS, DevOps, and hybrid cloud infrastructure. Responsibilities:

• Perform cloud assessments, web application penetration testing, mobile application testing, network and operating system assessments
• Perform independent reviews of company’s security, network, applications, and cloud environments
• Produce reports and artifacts for various levels of leadership and staff relating to security related activities
• Ensure alignment of security controls as part of company’s Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices
• Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise
• Participate in developing security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends

• Requires an in-depth knowledge of security controls and standards in relation to Cloud Security, Architecture, DevOps, and Security Testing.
• Experience with AWS Services including automation services (Lambda, JSON, etc…)
• Experience with DevOps Pipelines and GitHub Repos
• Architectural understanding and expertise of cloud and hybrid cloud infrastructure
• Five years’ Experience with Security Engineering activities and testing.
• Three years of experience with DevOps processes
• Three years’ experience with AWS architecture and services.

• AWS Certified Solutions Architect
• AWS Certified Security Specialty
• Certification Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• GIAC Cloud Security Essentials (GCLD)
• GIAC Cloud Security Automation (GCSA)
• GIAC Security Essentials (GSEC)
• GIAC Defensible Security Architecture (GDSA)