Cloud Security Engineer

Back

Cloud Security Engineer

@ CGI

  • Advocate and collaborate with engineers, developers, and non-technical members on cloud security related issues.
  • Create, update and maintain DevSecOps processes for cloud and container-based deployments
  • Design and implement secure solutions and architectures for cloud, multiple cloud and hybrid cloud systems to support clients, delivery teams, and Managed Service Provider (MSP)/Managed Security Service Provider (MSSP) practices.
  • Develop automation, runbooks, and scripts to automatically resolve security or configuration issues in AWS or Azure.
  • Proactively improve the security posture of cloud-based environments with CSP (Cloud Service Provider) services, Compliance as Code and automaton
  • Promote and help enable other teams to adopt Security Orchestration, Automation and Reponses (SOAR).
  • Update and maintain security tooling in CI/CD pipelines for containers and cloud related resources
  • Work with compliance, security and application teams to maintain security compliance for federal (DoD (Department of Defense), FedRAMP, CMMC), corporate and industry compliance programs.



Qualifications:

  • • 2+ years of relevant experience with cloud security and development
  • • Experience implementing Infrastructure as Code (IaC) with CloudFormation, ARM or Terraform.
  • • Detailed understanding of AWS and Azure core security and identity capabilities, features, and services
  • Knowledge of Git for source code version control
  • Needs to have the ability to develop and contribute while working seamlessly in a distributed team via collaboration tools
  • Certifications – At least one security (CISSP, CEH, GIAC, Security+, AWS Certified Security - Specialty, Microsoft Certified Azure Security Engineer) and one CSP (AWS or Azure) Associate certifications
  • Understanding of AWS and Azure core Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Function as a Service (FaaS) capabilities, features, and services and/or detailed understanding of cloud-native reference architectures.
  • Understanding of Continuous Integration and Continuous Delivery (CI/CD) pipelines to incorporate security, hardening and best practices for delivery of secure software
  • Working knowledge of at least one high-level programming language (C#, Go, Java, JavaScript/TypeScript, Python, Ruby, etc.)



Desirable:

  • AWS professional (AWS Certified Solutions Architect – Professional, AWS Certified DevOps Engineer – Professional) or Azure role-based certification.
  • Bachelor level technical degree or equivalent experience; Computer Science or Engineering background preferred
  • Developing Serverless applications leveraging AWS services (DynamoDB, EventBridge, Lambda, S3, SQS, SNS) and/or Azure Services
  • Experience in supporting container-based applications, implementing security for microservices in the CI/CD progress, runtime and registry for AWS (Docker, AWS ECS, AWS ECR, AWS Fargate, AWS EKS), Azure AKS, Docker, and Kubernetes.
  • Familiarity with Linux / Windows operating systems and methods to securely operate workloads
  • Knowledge of at least one of federal compliance standards (CMMC, DoD SRG, DoD STIGs, FedRAMP and NIST) is preferred.
  • Knowledge with Configuration as Code tools/services (Puppet, Ansible or AWS SSM) for orchestration of OS (Operating System) level configuration and compliance
  • Knowledge of and Atlassian (Jira, Bitbucket, and Confluence) and ServiceNow APIs for automation.

Additional Requirements:

  • Due to the nature of the government contracts we support, US Citizenship is required.



How to Apply:

Apply online at https://www.cgi.com/en/careers

Visit Site to Apply

Location: Lafayette, LA
Date Posted: October 22, 2021
Application Deadline: December 22, 2021