Ampcus Incorporated
IT Engineer (Cloud Security Engineer)
Ampcus Incorporated, Vienna, Virginia, United States, 22184
Qualifications:
- Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management.
- Experience with certificate management for IaaS and PaaS elements.
- Experience with Azure AD, Azure Resource Management Templates and Azure policies.
- Experience with Azure Key Vault integration and key management.
- Experience with VSTS release management for Azure Key Vault and other IaaS and PaaS elements.
- Hands-on development and scripting skills in PowerShell 5.
- 7+ years experience working in a technical role with a minimum of 3 years experience focused on information security and access control.
- Strong knowledge of information security and access controls.
- Industry certification (CISSP, CISA, CISM, CEH) of high interest.
- Financial industry experience preferred.
- Experience with CheckPoint Next Generation Firewall and Threat Prevention Suite (nice to have).
Responsibilities:
- Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) for Azure environment.
- Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and manager audiences.
- Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure.
- Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions.
- Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
- Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
- Support the development and delivery of a comprehensive ISP for the entire organization.
- Develop and maintain documentation of all Security products including specific tools, technologies and processes.
- Participate in Information Security Incident Response activities for the environment.
- Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services.
- Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
- Manage remediation efforts for any gaps reported in audits or recommended process improvements.
- Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to cloud strategy.
#J-18808-Ljbffr
- Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management.
- Experience with certificate management for IaaS and PaaS elements.
- Experience with Azure AD, Azure Resource Management Templates and Azure policies.
- Experience with Azure Key Vault integration and key management.
- Experience with VSTS release management for Azure Key Vault and other IaaS and PaaS elements.
- Hands-on development and scripting skills in PowerShell 5.
- 7+ years experience working in a technical role with a minimum of 3 years experience focused on information security and access control.
- Strong knowledge of information security and access controls.
- Industry certification (CISSP, CISA, CISM, CEH) of high interest.
- Financial industry experience preferred.
- Experience with CheckPoint Next Generation Firewall and Threat Prevention Suite (nice to have).
Responsibilities:
- Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) for Azure environment.
- Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and manager audiences.
- Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure.
- Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions.
- Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
- Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
- Support the development and delivery of a comprehensive ISP for the entire organization.
- Develop and maintain documentation of all Security products including specific tools, technologies and processes.
- Participate in Information Security Incident Response activities for the environment.
- Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services.
- Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
- Manage remediation efforts for any gaps reported in audits or recommended process improvements.
- Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to cloud strategy.
#J-18808-Ljbffr