Alltech Consulting Services Inc
Unix/Linux Hybrid Cloud Security Engineer
Alltech Consulting Services Inc, Naperville, Illinois, United States, 60540
Job Description:
Learn more about the general tasks related to this opportunity below, as well as required skills.
* UNIX/Linux Hybrid Cloud Security Engineer is responsible for designing, implementing, and maintaining security controls and solutions across on-premises and cloud environments within the organization's hybrid cloud infrastructure.* This role plays a crucial part in ensuring the confidentiality, integrity, and availability of critical financial data and systems while adhering to industry regulations and best practices.
Key Responsibilities:* Access and Authentication Management:• Design and implement robust access control mechanisms, including centralized authentication systems (e.g., LDAP. Kerberos, RADIUS) and multi-factor authentication solutions.Security Architecture and Design:• Collaborate with cross-functional teams to design and implement secure architectures for UNIX/Linux systems, containerized environments, and cloud services (e.g., AWS, Azure, GCP).
* Secure Configuration and Hardening:• Develop and maintain secure configuration baselines for Unix/inux systems, following industry best practices and regulatory compliance requirements.
* Hybrid Cloud Security:• Design and implement secure architectures for Unix/Linux workloads in hybrid cloud environments, considering factors such as network segmentation, data encryption, and access controls.• Collaborate with cloud service providers to ensure compliance with their security standards and best practicas.• Develop and maintain secure automation scripts and tools for provisioning, configuring, and managing Unix/Linux systems in the cloud.
* Incident Response and Forensics:• Participate in incident response procedures, conducting investigations and performing root cause analysis for security incidents involving Unix /Linux systems.Security Operations and Hardening:• Implement and maintain security controls, including firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) solutions.• Leverage Infrastructure-as-code (laC) principles to codify and automate recure infrastructure deploymentImplement continuous integration and continuous deployment (CI/CD) pipelines with embedded security controls.
* Processes, Procedures, and Documentation:• Develop and maintain comprehensive security policies, procedures, and technical documentation for hybrid cloud environments.• Establish and enforce secure coding practices, code review processes, and secure software development life cycle (SDLC) methodologies.
* Knowledge Transfer and Mentoring:• Provide subject matter expertise and guidance to cross-functional teams on security best practices and emerging threats.• Participate in security awareness and training programs for Unix/Linux administrators and developers• Mentor and support junior security engineers, fostering knowledge sharing and professional development.• Collaborate with vendors, partners, and the broader security community to stay abreast of industry trends and emerging technologies.• Continuously research and evaluate new security technologies and methodologies to enhance the organization's security posture.
Qualifications and Requirements:* Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.* Minimum of 7-10 years of experience in UNIX/Linux system administration and security roles.* Extensive knowledge of security principles, techniques, and best practices for on-premises and cloud environments.* Hands-on experience with security tools and technologies, such as firewalls, IDS/IPS, SIEM, vulnerability scanners, and secure coding practices.* Proficiency in scripting languages (e.g., Python, Bash, PowerShell) and infrastructure-as-code tools (e.g.. Terraform, Ansible, Puppet).* Strong understanding of industry regulations and compliance requirements (e.g.. PCI-DSS, SOX, GDPR).* Excellent communication and documentation skills for technical and non-technical audiences.* Ability to work in a fast-paced, dynamic environment and handle multiple priorities effectively.* Certifications such as CISSP, GIAC, or vendor-specific security certifications are highly desirable.* This role requires a combination of technical expertise, strategic thinking, and strong communication skills to ensure the organization's hybrid cloud infrastructure remains secure while enabling business growth and innovation.Remote working/work at home options are available for this role.
Learn more about the general tasks related to this opportunity below, as well as required skills.
* UNIX/Linux Hybrid Cloud Security Engineer is responsible for designing, implementing, and maintaining security controls and solutions across on-premises and cloud environments within the organization's hybrid cloud infrastructure.* This role plays a crucial part in ensuring the confidentiality, integrity, and availability of critical financial data and systems while adhering to industry regulations and best practices.
Key Responsibilities:* Access and Authentication Management:• Design and implement robust access control mechanisms, including centralized authentication systems (e.g., LDAP. Kerberos, RADIUS) and multi-factor authentication solutions.Security Architecture and Design:• Collaborate with cross-functional teams to design and implement secure architectures for UNIX/Linux systems, containerized environments, and cloud services (e.g., AWS, Azure, GCP).
* Secure Configuration and Hardening:• Develop and maintain secure configuration baselines for Unix/inux systems, following industry best practices and regulatory compliance requirements.
* Hybrid Cloud Security:• Design and implement secure architectures for Unix/Linux workloads in hybrid cloud environments, considering factors such as network segmentation, data encryption, and access controls.• Collaborate with cloud service providers to ensure compliance with their security standards and best practicas.• Develop and maintain secure automation scripts and tools for provisioning, configuring, and managing Unix/Linux systems in the cloud.
* Incident Response and Forensics:• Participate in incident response procedures, conducting investigations and performing root cause analysis for security incidents involving Unix /Linux systems.Security Operations and Hardening:• Implement and maintain security controls, including firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) solutions.• Leverage Infrastructure-as-code (laC) principles to codify and automate recure infrastructure deploymentImplement continuous integration and continuous deployment (CI/CD) pipelines with embedded security controls.
* Processes, Procedures, and Documentation:• Develop and maintain comprehensive security policies, procedures, and technical documentation for hybrid cloud environments.• Establish and enforce secure coding practices, code review processes, and secure software development life cycle (SDLC) methodologies.
* Knowledge Transfer and Mentoring:• Provide subject matter expertise and guidance to cross-functional teams on security best practices and emerging threats.• Participate in security awareness and training programs for Unix/Linux administrators and developers• Mentor and support junior security engineers, fostering knowledge sharing and professional development.• Collaborate with vendors, partners, and the broader security community to stay abreast of industry trends and emerging technologies.• Continuously research and evaluate new security technologies and methodologies to enhance the organization's security posture.
Qualifications and Requirements:* Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.* Minimum of 7-10 years of experience in UNIX/Linux system administration and security roles.* Extensive knowledge of security principles, techniques, and best practices for on-premises and cloud environments.* Hands-on experience with security tools and technologies, such as firewalls, IDS/IPS, SIEM, vulnerability scanners, and secure coding practices.* Proficiency in scripting languages (e.g., Python, Bash, PowerShell) and infrastructure-as-code tools (e.g.. Terraform, Ansible, Puppet).* Strong understanding of industry regulations and compliance requirements (e.g.. PCI-DSS, SOX, GDPR).* Excellent communication and documentation skills for technical and non-technical audiences.* Ability to work in a fast-paced, dynamic environment and handle multiple priorities effectively.* Certifications such as CISSP, GIAC, or vendor-specific security certifications are highly desirable.* This role requires a combination of technical expertise, strategic thinking, and strong communication skills to ensure the organization's hybrid cloud infrastructure remains secure while enabling business growth and innovation.Remote working/work at home options are available for this role.