Job Title: Cloud Security Engineer
Job Location: Berkeley Heights, NJ, Omaha, NE, Alpharetta, GA, Marietta, GA (100% Onsite - local only, no relocation)
# Positions: 1
Employment Type: FTE
Key Technology: Azure, IAM, Security
Job Responsibilities:
- Responsible for implementing technology initiatives to secure our key government client's cloud environment.
- Be accountable for assisting in strategic planning and architecture and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures.
- Enable Cloud Cybersecurity controls and compliance requirements and remediation programs based on business priorities and risks to address Cyber-Security, Cyber Defense and Business needs of the customer.
Skills and Experience Required:
Required:
- 5+ years' cyber related experience in a commercial environment with Azure, in a technical information security and risk management role.
- 5+ years managing security policies and initiatives in Azure.
- Knowledge of Identity Access and Management concepts, multifactor authentication, SSO/Federation
- Knowledge of Privileged Access Management key concepts
- Ability to set up and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure Cloud regions.
- Understanding of Network and Application Vulnerability testing as it relates to Azure systems.
- Experience with security concepts & tools related to CI/CD pipelines, and software scanning.
- Able to demonstrate understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains:
- Identity, Credential and Access Management (ICAM)
- Authentication and Authorization including SSO and Identify Federation
- Zero-Trust Model
- Defense-In-Depth
- Governance and Compliance
- Securing Data
- Securing the Operating System
- Protecting the Network Layer
- Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response
- Cloud Core Platform: Compute, Storage, Networking
Desired:
- Government environments and Gov-Cloud experience
- Experience with CrowdStrike Falcon EDR for Azure
- Ability to Manage/maintain FISMA and FedRAMP compliance for a government information system
- Demonstrated experience collaborating directly with external clients, business leadership, and auditors.
- 5+ years of firsthand working with the various Azure security tools/platforms such as:
- Extended Detection and Response (XDR): Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity
- Data Protection: Microsoft Purview, Microsoft Information Protection, DLP, One Trust, Kubernetes
- Identity and Access Management (IAM): Zero Trust, Azure IAM and AWS IAM, Entra ID (Azure AD), Multitenant Organization (MTO), Lighthouse, Key Vault, Conditional Assess
- Monitoring Compliance: Sentinel, MDC
- Entra ID (formally Azure AD), M365
Education:
- Bachelor's degree in a technology field, Masters degree preferred.
Certifications:
- CISSP, CCSP, Azure/AWS/Google Security specific Training and Certification