Cloud Security Engineer

5 days ago

Apply Now

Receive Emails with Similar Jobs

Shuvel

WebsiteLinkedInAll Job Openings

11 - 50

Description

• Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) for Navy’s Azure environment. • Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and manager audiences. • Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure. • Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions. • Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams. • Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures. • Support the development and delivery of a comprehensive ISP for the entire organization. • Develop and maintain documentation of all Security products including specific tools, technologies and processes. • Participate in Information Security Incident Response activities for the NFCU’s environment. • Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services. • Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties. • Manage remediation efforts for any gaps reported in audits or recommended process improvements. • Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to Navy Federal’s cloud strategy.

Requirements

• Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management; • Experience with certificate management for IaaS and PaaS elements • Experience with Azure AD, Azure Resource Management Templates and Azure policies • Experience with Azure Key Vault integration and key management • Experience with VSTS release management for Azure Key Vault and other IaaS and PaaS elements. • Hands-on development and scripting skills in PowerShell 5 • 7+ years’ experience working in a technical role with a minimum of 3 years’ experience focused on information security and access control. • Strong knowledge of information security and access controls. • Industry certification (CISSP, CISA, CISM, CEH) of high interest • Financial industry experience preferred • Experience with CheckPoint Next Generation Firewall and Threat Prevention Suite (nice to have)