Information Technology


Sr. Cloud Security Engineer  Iselin, NJ  
Job Description

Job ID#:

1713

Job Category:

Information Technology

Position Type:

Contract

:

12 months+


A Financial Services and Technology client of ours is currently looking to bring on a contractor to join their Cloud Security team on a long-term contract basis.  This individual will join the Security team as they are embarking on an enterprise-wide, multi-year project involving a massive infrastructure and services migration to the cloud (AWS).   The Security Framework is in place, but this is still very much a Greenfield environment.  This is very much a hands-on security engineering role focused on IDS/IPS, HIDS, PAM, WAFs in order to safeguard networks, data, applications and technologies from threats as they move to a cloud environment.  This opportunity offers a rare challenge to build something essentially from scratch and will require a motivated individual who really wants to learn new technology (particularly cloud).  

Responsibilities:

  • Evaluate architectural designs and perform security reviews; Work closely with IT Engineering and other teams internally.
  • Utilize expertise in AWS cloud security engineering to assist the team in its efforts to maintain a secure environment
  • Provide security guidance and consulting to internal teams;
  • Develop security standards and review security configurations related to Linux, Windows, AWS deployments and common web application frameworks
  • Hands-on security engineering and operations in the AWS cloud, including application of patches, configuration, and monitoring.
  • Development of security automation scripts and techniques for automatic application of security controls within the cloud
  • Assisting in design, planning, and implementation of security controls, policies, and processes

 
Job Requirements

 

Requirements:
  • 5 years of experience in Cyber Security Engineering, DevOps or IT operations roles, strong familiarity with the principles of network and endpoint security;
  • 2 years of hands-on experience securing cloud applications and infrastructure, specifically with AWS.  
  • Good understanding of security management solutions and experience with implementation of the following technologies
    • SIEM 
    • Intrusion Prevention and Intrusion Detection Systems (IDS/IPS)
    • HIDS
    • WAFs and firewalls
    • Security Groups and/or SDN
    • PAM
    • Vulnerability Scanning
    • Cloud Continued Compliance
  • Excellent understanding/working knowledge of the public cloud infrastructure and services in AWS (IAM, VPC, KMS, CloudWatch, CloudTrail, Systems Manager, S3, RDS, Route53, Lambda, AWS Config, KMS and CloudHSM etc.);
  • Experience building and securing infrastructure as code using CloudFormation, Ansible, Terraform and/or similar tools;
  • Understanding of software development lifecycle (SDLC) models, as well as the approaches to implement the AWS Well-Architected Framework;
  • Understanding of the shared responsibility model in AWS;
  • Fluency with one or more scripting/coding languages (e.g. bash, Python) is a plus;
  • Relevant security and AWS certifications are strongly preferred.




 

Already have an account? Log in here