Highbrow LLC
Cloud Security Engineer
Highbrow LLC, Gates, Oregon, United States, 97346
Job Title: Cloud Security Engineer
Job ID: 2024-12883
Job Location: Berkeley Heights, NJ, Omaha, NE, Alpharetta, GA, Marietta, GA or remote
Job Travel Location(s):
# Positions: 2
Employment Type: W2
Duration:Long Term
# of Layers:0
Work Eligibility:US Permanent Eligibility to Work Required
Key Technology:Azure, IAM, Security
Job Responsibilities:
Responsible for implementing technology initiatives to secure our key government client’s cloud environment.
Be accountable for assisting in strategic planning and architecture and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures.
Enable Cloud Cybersecurity controls and compliance requirements and remediation programs based on business priorities and risks to address Cyber-Security, Cyber Defense and Business needs of the customer.
Skills and Experience Required: Required:
5+ years’ cyber related experience in a commercial environment with Azure, in a technical information security and risk management role.
5+ years managing security policies and initiatives in Azure.
Knowledge of Identity Access and Management concepts, multifactor authentication, SSO/Federation
Knowledge of Privileged Access Management key concepts
Ability to set up and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure Cloud regions.
Understanding of Network and Application Vulnerability testing as it relates to Azure systems.
Experience with security concepts & tools related to CI/CD pipelines, and software scanning.
Able to demonstrate understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains:
Identity, Credential and Access Management (ICAM)
Authentication and Authorization including SSO and Identify Federation
Zero-Trust Model
Defense-In-Depth
Governance and Compliance
Securing Data
Securing the Operating System
Protecting the Network Layer
Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response
Cloud Core Platform: Compute, Storage, Networking
Desired:
Government environments and Gov-Cloud experience
Experience with CrowdStrike Falcon EDR for Azure
Ability to Manage/maintain FISMA and FedRAMP compliance for a government information system
Demonstrated experience collaborating directly with external clients, business leadership, and auditors.
5+ years of firsthand working with the various Azure security tools/platforms such as:
Extended Detection and Response (XDR): Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity
Data Protection: Microsoft Purview, Microsoft Information Protection, DLP, One Trust, Kubernetes
Identity and Access Management (IAM): Zero Trust, Azure IAM and AWS IAM, Entra ID (Azure AD), Multitenant Organization (MTO), Lighthouse, Key Vault, Conditional Assess
Monitoring Compliance: Sentinel, MDC
Entra ID (formally Azure AD), M365
Education:
Bachelor’s degree in a technology field, Masters degree preferred.
Certifications:
CISSP, CCSP, Azure/AWS/Google Security specific Training and Certification
#J-18808-Ljbffr
Job Location: Berkeley Heights, NJ, Omaha, NE, Alpharetta, GA, Marietta, GA or remote
Job Travel Location(s):
# Positions: 2
Employment Type: W2
Duration:Long Term
# of Layers:0
Work Eligibility:US Permanent Eligibility to Work Required
Key Technology:Azure, IAM, Security
Job Responsibilities:
Responsible for implementing technology initiatives to secure our key government client’s cloud environment.
Be accountable for assisting in strategic planning and architecture and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures.
Enable Cloud Cybersecurity controls and compliance requirements and remediation programs based on business priorities and risks to address Cyber-Security, Cyber Defense and Business needs of the customer.
Skills and Experience Required: Required:
5+ years’ cyber related experience in a commercial environment with Azure, in a technical information security and risk management role.
5+ years managing security policies and initiatives in Azure.
Knowledge of Identity Access and Management concepts, multifactor authentication, SSO/Federation
Knowledge of Privileged Access Management key concepts
Ability to set up and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure Cloud regions.
Understanding of Network and Application Vulnerability testing as it relates to Azure systems.
Experience with security concepts & tools related to CI/CD pipelines, and software scanning.
Able to demonstrate understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains:
Identity, Credential and Access Management (ICAM)
Authentication and Authorization including SSO and Identify Federation
Zero-Trust Model
Defense-In-Depth
Governance and Compliance
Securing Data
Securing the Operating System
Protecting the Network Layer
Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response
Cloud Core Platform: Compute, Storage, Networking
Desired:
Government environments and Gov-Cloud experience
Experience with CrowdStrike Falcon EDR for Azure
Ability to Manage/maintain FISMA and FedRAMP compliance for a government information system
Demonstrated experience collaborating directly with external clients, business leadership, and auditors.
5+ years of firsthand working with the various Azure security tools/platforms such as:
Extended Detection and Response (XDR): Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity
Data Protection: Microsoft Purview, Microsoft Information Protection, DLP, One Trust, Kubernetes
Identity and Access Management (IAM): Zero Trust, Azure IAM and AWS IAM, Entra ID (Azure AD), Multitenant Organization (MTO), Lighthouse, Key Vault, Conditional Assess
Monitoring Compliance: Sentinel, MDC
Entra ID (formally Azure AD), M365
Education:
Bachelor’s degree in a technology field, Masters degree preferred.
Certifications:
CISSP, CCSP, Azure/AWS/Google Security specific Training and Certification
#J-18808-Ljbffr