Information Technology


Cloud Security Engineer  New York, NY  
Job Description

Job ID#:

1694

Job Category:

Information Technology

Position Type:

Full-time/Perm


A banking client of ours in New York City is looking to hire a Cloud Security Engineer with a focus on Azure to join their growing IT Security Operations team.  This position will be responsible for threat detection and incident response on all cloud-based (IaaS, PaaS, SaaS) systems and creating and implementing effective controls.  This is a great company to work for, with a growing security team offering a professional challenge as well as a strong commitment to work-life balance.  

Responsibilities:

  • Create an effective set of controls for all instances of Microsoft Azure, SalesForce, Amazon AWS, Google GCE infrastructure.  (Demonstrated experience with Azure and at least one of the others is required)
  • Analyze threats detected by the threat intelligence system and tools in the cloud before they cause material damage to the business.  In the event an alert is identified as a security incident, you will kick off Incident Response.
  • Provide technical and security expertise throughout the incident; then, implement any improvements assigned to Cloud Security. Incident response process includes log analysis, memory and disk forensics, reverse engineering, network containment, threat eradication and postmortems. Etc.
  • Develop security tools and automate existing workflows to improve cloud security.
  • Support the Threat Intelligence and Data Leakage Prevention monitoring processes.
  • Evaluate and support CASB, Azure AD and other supporting identity governance tools.
  • Work closely with engineering teams while developing cloud related controls; then, socialize them.
  • Be able to measure and prove the effectiveness of cloud related control to auditors as needed.
  • Develop and update relevant documentation, including specifications and diagrams.
  • Evaluate and review issues related to IT Security attacks and breaches.
  • Assist the Information Security Manager in developing policies and procedures for logging, monitoring, response, and escalations.
  • Collect data for IT Security metrics and create reports.
  • Support bank’s threat intelligence and Data Leakage Prevention monitoring processes
  • Participate in IT Security product evaluations and implementations.
  • Maintain up-to-date knowledge of the Information Security industry including new threats, tools and trends; inform management accordingly.

 
Job Requirements

 

Requirements:
  • Bachelor’s degree in Information Security or comparable work experience in a technical environment required
  • 2+ years of experience working with IaaS, SaaS, PaaS service providers (Azure, AWS, Google GCE, Salesforce)
  • Minimum of 3 years hands on experience in Information Security Role required. Preference: 2 plus year working and securing Azure and its services; extensive experience in security operations and threat detection in the cloud; VPC Flow log, Cloud Storage, WAF, public Cloud Native APIs.
  • Familiarity with role-based and least-privilege access models
  • Extensive experience in security operations and threat detection in the cloud.
  • Experience in working with various AWS logs such VPC Flowlog, S3, WAF, etc.
  • Experience with public Cloud Native APIs (Microsoft Azure, Google, SalesForce, AWS) 




 

Already have an account? Log in here