Work you’ll do

·As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs:

·Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations.

·Performing technical health checks for cloud platforms/environments prior to broader deployments.

·Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor.

·Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption).

·Documenting all technical issues, analysis, client communication, and resolution.

·Supporting proof of concept and production deployments of cloud technologies.

·Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting.

·Operating across both technical and management leadership capacities.

·Providing internal technical training to Advisory personnel as needed.

·Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc.

·Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc.

Required skills

·4+ years of information technology and/or information security operations experience.

·Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid).

·Familiarity with the following will be considered a plus:

·Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms

·Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers

·Hands-on technical experience implementing security solutions for Microsoft Azure

·Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc.

·Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies

·Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms

Preferred:

·Previous Consulting or Big 4 experience.

·Hands-on experience with Azure, plus any CASB or CWPP product or service.

·Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc.

·Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.)

Qualification

·Bachelor’s Degree required.  Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.