Beacon Hill Staffing Group
Lead Cloud Security Engineer
Beacon Hill Staffing Group, Augusta, Maine, us, 04338
This job was posted by https://joblink.maine.gov : For more information, please see: https://joblink.maine.gov/jobs/1160535 Summary:
We are seeking a highly skilled Lead Cloud Security Engineer to head our cloud security initiatives. This team leader role requires an expert in securing cloud environments, specifically Microsoft Azure, AWS and Google Cloud Platform (GCP), with substantial experience in hybrid infrastructures. The Lead Cloud Security Engineer will be responsible for defining the strategic direction of our cloud security posture, leading a team of security professionals, and ensuring that robust security measures are in place across all cloud and on-premises systems.
Key Responsibilities:
Strategic Planning and Leadership: Develop and execute a comprehensive cloud security strategy aligned with organizational goals. Lead and mentor a team of cloud security engineers, providing guidance and professional development. Serve as the primary point of contact for all cloud security matters. Cloud Security Architecture and Governance: Design and oversee the implementation of secure architectures for Azure and GCP environments. Establish and enforce security policies, standards, and best practices across cloud platforms. Integration of Cloud and On-Premises Security: Ensure seamless integration of security controls between cloud services and on-premises infrastructure. Lead efforts to modernize legacy systems and migrate to secure cloud solutions when appropriate.
Risk Management and Compliance:
Identify, assess, and prioritize security risks across cloud and on-premises environments. Ensure compliance with relevant regulations and standards (e.g., ISO 27001, NIST, PCI DSS, GDPR). Coordinate with internal and external auditors during security assessments. Incident Response and Threat Intelligence: Incident Response and Threat Intelligence: Develop and oversee incident response plans for cloud environments. Lead investigations into security incidents and coordinate remediation efforts. Utilize threat intelligence to proactively adjust security measures. DevSecOps and Automation Leadership: Champion the integration of security into DevOps practices, promoting a DevSecOps culture. Lead the automation of security processes and controls using advanced tools and methodologies. Stakeholder Engagement and Communication: Collaborate with executive leadership to communicate security strategies and risks. * Work with cross-functional teams to ensure security requirements are understood and implemented. Represent the organization in security forums and industry events. Continuous Innovation and Improvement: Stay abreast of emerging security technologies, threats, and industry trends. Drive innovation by evaluating and implementing new security tools and solutions. Be relentless about continual risk reduction through iterative improvement across all facets of hybrid cloud security.
Required Qualifications:
Bachelor\'s degree in Computer Science, Information Security, or related field; a Master\'s degree is preferred. 8+ years of experience in information security, with at least 5 years focused on cloud security. Proven leadership experience managing security teams and projects. Demonstrable expert knowledge of Microsoft Azure and Google Cloud Platform (GCP) security services and architectures. Extensive experience with on-premises infrastructure security and hybrid environments. Strong understanding of security frameworks and regulatory compliance requirements. Proficiency in security risk management and mitigation strategies.
Preferred Qualifications:
Advanced certifications such as CISSP, CC P, Azure Solutions Architect Expert, Google Professional Cloud Architect, or equivalent. Experience in large-scale cloud migrations and transformation projects. Knowledge of Zero Trust security models and their application in cloud environments. Familiarity with enterprise security tools and platforms (e.g., CASB, DLP, PAM solutions).
Skills and Competencies:
Strategic Leadership: Ability to define and drive the cloud security vision and strategy.
Technical Mastery: Deep expertise in cloud and on-premises security technologies and architectures.
Risk Management: Proficient in identifying risks and implementing effective mitigation strategies.
Project Management: Strong organizational skills to manage multiple initiatives and deadlines.
Communication and Influence: Exceptional ability to communicate complex security concepts to diverse audiences, including executive leadership.
Collaboration: Proven ability to work collaboratively across departments and with external partners.
Innovation: Creative thinker who can introduce new ideas and technologies to enhance security.
We are seeking a highly skilled Lead Cloud Security Engineer to head our cloud security initiatives. This team leader role requires an expert in securing cloud environments, specifically Microsoft Azure, AWS and Google Cloud Platform (GCP), with substantial experience in hybrid infrastructures. The Lead Cloud Security Engineer will be responsible for defining the strategic direction of our cloud security posture, leading a team of security professionals, and ensuring that robust security measures are in place across all cloud and on-premises systems.
Key Responsibilities:
Strategic Planning and Leadership: Develop and execute a comprehensive cloud security strategy aligned with organizational goals. Lead and mentor a team of cloud security engineers, providing guidance and professional development. Serve as the primary point of contact for all cloud security matters. Cloud Security Architecture and Governance: Design and oversee the implementation of secure architectures for Azure and GCP environments. Establish and enforce security policies, standards, and best practices across cloud platforms. Integration of Cloud and On-Premises Security: Ensure seamless integration of security controls between cloud services and on-premises infrastructure. Lead efforts to modernize legacy systems and migrate to secure cloud solutions when appropriate.
Risk Management and Compliance:
Identify, assess, and prioritize security risks across cloud and on-premises environments. Ensure compliance with relevant regulations and standards (e.g., ISO 27001, NIST, PCI DSS, GDPR). Coordinate with internal and external auditors during security assessments. Incident Response and Threat Intelligence: Incident Response and Threat Intelligence: Develop and oversee incident response plans for cloud environments. Lead investigations into security incidents and coordinate remediation efforts. Utilize threat intelligence to proactively adjust security measures. DevSecOps and Automation Leadership: Champion the integration of security into DevOps practices, promoting a DevSecOps culture. Lead the automation of security processes and controls using advanced tools and methodologies. Stakeholder Engagement and Communication: Collaborate with executive leadership to communicate security strategies and risks. * Work with cross-functional teams to ensure security requirements are understood and implemented. Represent the organization in security forums and industry events. Continuous Innovation and Improvement: Stay abreast of emerging security technologies, threats, and industry trends. Drive innovation by evaluating and implementing new security tools and solutions. Be relentless about continual risk reduction through iterative improvement across all facets of hybrid cloud security.
Required Qualifications:
Bachelor\'s degree in Computer Science, Information Security, or related field; a Master\'s degree is preferred. 8+ years of experience in information security, with at least 5 years focused on cloud security. Proven leadership experience managing security teams and projects. Demonstrable expert knowledge of Microsoft Azure and Google Cloud Platform (GCP) security services and architectures. Extensive experience with on-premises infrastructure security and hybrid environments. Strong understanding of security frameworks and regulatory compliance requirements. Proficiency in security risk management and mitigation strategies.
Preferred Qualifications:
Advanced certifications such as CISSP, CC P, Azure Solutions Architect Expert, Google Professional Cloud Architect, or equivalent. Experience in large-scale cloud migrations and transformation projects. Knowledge of Zero Trust security models and their application in cloud environments. Familiarity with enterprise security tools and platforms (e.g., CASB, DLP, PAM solutions).
Skills and Competencies:
Strategic Leadership: Ability to define and drive the cloud security vision and strategy.
Technical Mastery: Deep expertise in cloud and on-premises security technologies and architectures.
Risk Management: Proficient in identifying risks and implementing effective mitigation strategies.
Project Management: Strong organizational skills to manage multiple initiatives and deadlines.
Communication and Influence: Exceptional ability to communicate complex security concepts to diverse audiences, including executive leadership.
Collaboration: Proven ability to work collaboratively across departments and with external partners.
Innovation: Creative thinker who can introduce new ideas and technologies to enhance security.