Advocate and collaborate with engineers, developers, and non-technical members on cloud security related issues.
Create, update and maintain DevSecOps processes for cloud and container-based deployments
Design and implement secure solutions and architectures for cloud, multiple cloud and hybrid cloud systems to support clients, delivery teams, and Managed Service Provider (MSP)/Managed Security Service Provider (MSSP) practices.
Develop automation, runbooks, and scripts to automatically resolve security or configuration issues in AWS or Azure.
Proactively improve the security posture of cloud-based environments with CSP (Cloud Service Provider) services, Compliance as Code and automaton
Promote and help enable other teams to adopt Security Orchestration, Automation and Reponses (SOAR).
Update and maintain security tooling in CI/CD pipelines for containers and cloud related resources
Work with compliance, security and application teams to maintain security compliance for federal (DoD (Department of Defense), FedRAMP, CMMC), corporate and industry compliance programs.
• 2+ years of relevant experience with cloud security and development
• Experience implementing Infrastructure as Code (IaC) with CloudFormation, ARM or Terraform.
• Detailed understanding of AWS and Azure core security and identity capabilities, features, and services
Knowledge of Git for source code version control
Needs to have the ability to develop and contribute while working seamlessly in a distributed team via collaboration tools
Certifications – At least one security (CISSP, CEH, GIAC, Security+, AWS Certified Security - Specialty, Microsoft Certified Azure Security Engineer) and one CSP (AWS or Azure) Associate certifications
Understanding of AWS and Azure core Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Function as a Service (FaaS) capabilities, features, and services and/or detailed understanding of cloud-native reference architectures.
Understanding of Continuous Integration and Continuous Delivery (CI/CD) pipelines to incorporate security, hardening and best practices for delivery of secure software
AWS professional (AWS Certified Solutions Architect – Professional, AWS Certified DevOps Engineer – Professional) or Azure role-based certification.
Bachelor level technical degree or equivalent experience; Computer Science or Engineering background preferred
Experience in supporting container-based applications, implementing security for microservices in the CI/CD progress, runtime and registry for AWS (Docker, AWS ECS, AWS ECR, AWS Fargate, AWS EKS), Azure AKS, Docker, and Kubernetes.
Familiarity with Linux / Windows operating systems and methods to securely operate workloads
Knowledge of at least one of federal compliance standards (CMMC, DoD SRG, DoD STIGs, FedRAMP and NIST) is preferred.
Knowledge with Configuration as Code tools/services (Puppet, Ansible or AWS SSM) for orchestration of OS (Operating System) level configuration and compliance
Knowledge of and Atlassian (Jira, Bitbucket, and Confluence) and ServiceNow APIs for automation.
Due to the nature of the government contracts we support, US Citizenship is required.