OneStream Software
Cloud Security Engineer
OneStream Software, Birmingham, Michigan, us, 48012
Description
Cloud Security EngineerRemote, USA OneStream Software LLCBenefits Offered Vision, Medical, Life, Dental, 401KEmployment Type Full-TimeCompensation $90,000.00 - $120,000.00 (Range applies to US candidates only) + Benefits/Variable Comp./Equity - Range may vary based on experience.
ABOUT THE JOBWe are looking for a Cloud Security Engineer to join our Information Security team. This position is vital to OneStream's Cloud Security strategy with a focus on Microsoft Azure and 365. Responsibilities include developing and enhancing our SIEM for threat detection and response, identifying and implementing appropriate security measures across our cloud infrastructure and services, and helping to continuously elevate our security posture to keep our information and the information of our customers secure.The ideal candidate for this position will be someone with firsthand experience securing Microsoft Azure infrastructure and cloud services according to industry best practices, a working knowledge of Kusto Query Language (KQL) and Microsoft Sentinel, familiarity with hardening standards such as CIS Benchmarks and DISA STIG, and a passion for Cloud Security. Candidates must be able to explain and discuss technical details with both technical and non-technical audiences. Candidates must also work well in a small team and be willing to share responsibilities with other team members as needed.RESPONSIBILITIESPrimary Responsibilities:Design, configure, and continuously improve security across our Azure and Microsoft 365 landscape.Configure and manage Microsoft Defender for Cloud protections.Develop Azure Log Analytics Kusto Query Language (KQL) queries for monitoring and alerting.Enhance MS Sentinel SIEM to facilitate threat hunting and detection of suspicious and anomalous behavior.Implement and maintain system & application hardening, such as CIS Benchmarks and DISA STIG.Regularly audit environments to validate secure configuration of resources, services and applications.Work with other members of the Security team to review vulnerability scans and identify remediations.Collaborate with Internal and Cloud teams to ensure secure configuration of infrastructure and services.Support Risk/Compliance team with audit needs and validating adherence to control frameworks.Create and update technical documentation, policies and procedures.
QUALITIES OF A SUCCESSFUL CANDIDATEFormal Education and CertificationBS/BA in Computer Science, Engineering, or technology-related field (or equivalent work experience).
Knowledge and Experience3+ years of experience securing cloud-based infrastructure, services and technologies.Solid understanding of Cloud Security concepts including secure design & configuration, principle of least-privilege, data protection and detection & response to threats & indicators of compromise (IoC).Hands on experience developing and utilizing a Security Information & Event Management (SIEM) tool, such as MS Sentinel.Working knowledge of Azure Log Analytics and Kusto Query Language (KQL).Experience applying hardening standards such as CIS Benchmarks or DISA STIG.Experience with vulnerability scanning and remediation.Strong understanding of Windows and Linux Operating Systems.Familiarity with PowerShell, Bash, and REST APIs.Familiarity with incident and change management.
Nice to HaveExperience working for a Cloud Service Provider (CSP), Managed Service Provider (MSP) or SaaS Provider.3+ years of experience working extensively in Microsoft Azure, Amazon Web Services (AWS) or Google Cloud Platform (GCP).Understanding of compliance frameworks and security controls (NIST, FedRAMP, SOC, ISO, PCI-DSS, HIPAA).Working knowledge of network security, TCP/IP, TLS, and firewall configuration.Understanding of identity management systems and protocols (Entra ID, Okta, OIDC, SAML, OAuth).Familiarity with Bicep, Terraform, Ansible, Azure DevOps, Git.Understanding of Agile, Scrum, DevSecOps concepts.Understanding of Azure Kubernetes Services (AKS) and container security.Any certifications such as Microsoft Certified: Azure Security Engineer Associate (AZ-500), Azure Administrator Associate (AZ-104), Security Operations Analyst Associate (SC-200), CompTIA Security+.
Personal AttributesDeal well with ambiguous/undefined problems ability to think abstractly.Affinity for customer service.Strong problem-solving skills.Ability to multitask a variety of projects.Passion for technology and learning.Self-motivated, self-starter.Ethical.Professional.Team player.Excellent written, verbal, and interpersonal skills.Experience with OneStream Software not required.Legally authorized to work for any company in the United States without sponsorship.
WHO WE AREOneStream is how today's Finance teams can go beyond just reporting on the past and Take Finance Further by steering the business to the future. It's the only enterprise finance platform that unifies financial and operational data, embeds AI for better decisions and productivity, and empowers the CFO to become a critical driver of business strategy and execution. Our vision is to be the operating system for modern finance, digitizing core financial functions and empowering the CFO to become a critical driver of business strategy. To learn more visit www.onestream.com.WHY JOIN THE ONESTREAM TEAMTransparency around corporate structure, salary, and benefitsCore value of customer successVariety of project work (not industry specific)Strong culture and camaraderieMultiple training opportunities
Benefits at OneStream Software OneStream employees are passionate, hardworking individuals who go above and beyond to keep our customers happy and follow through on our mission statement. They consistently deliver the best and in turn, we make every effort to keep them cared for and happy. A sample of the benefits we provide are:Excellent Medical PlanDental & Vision InsuranceLife InsuranceShort & Long Term DisabilityVacation TimePaid HolidaysProfessional DevelopmentRetirement Plan
OneStream is an Equal Opportunity Employer.#LI-CB1#LI-RemoteEqual Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
Cloud Security EngineerRemote, USA OneStream Software LLCBenefits Offered Vision, Medical, Life, Dental, 401KEmployment Type Full-TimeCompensation $90,000.00 - $120,000.00 (Range applies to US candidates only) + Benefits/Variable Comp./Equity - Range may vary based on experience.
ABOUT THE JOBWe are looking for a Cloud Security Engineer to join our Information Security team. This position is vital to OneStream's Cloud Security strategy with a focus on Microsoft Azure and 365. Responsibilities include developing and enhancing our SIEM for threat detection and response, identifying and implementing appropriate security measures across our cloud infrastructure and services, and helping to continuously elevate our security posture to keep our information and the information of our customers secure.The ideal candidate for this position will be someone with firsthand experience securing Microsoft Azure infrastructure and cloud services according to industry best practices, a working knowledge of Kusto Query Language (KQL) and Microsoft Sentinel, familiarity with hardening standards such as CIS Benchmarks and DISA STIG, and a passion for Cloud Security. Candidates must be able to explain and discuss technical details with both technical and non-technical audiences. Candidates must also work well in a small team and be willing to share responsibilities with other team members as needed.RESPONSIBILITIESPrimary Responsibilities:Design, configure, and continuously improve security across our Azure and Microsoft 365 landscape.Configure and manage Microsoft Defender for Cloud protections.Develop Azure Log Analytics Kusto Query Language (KQL) queries for monitoring and alerting.Enhance MS Sentinel SIEM to facilitate threat hunting and detection of suspicious and anomalous behavior.Implement and maintain system & application hardening, such as CIS Benchmarks and DISA STIG.Regularly audit environments to validate secure configuration of resources, services and applications.Work with other members of the Security team to review vulnerability scans and identify remediations.Collaborate with Internal and Cloud teams to ensure secure configuration of infrastructure and services.Support Risk/Compliance team with audit needs and validating adherence to control frameworks.Create and update technical documentation, policies and procedures.
QUALITIES OF A SUCCESSFUL CANDIDATEFormal Education and CertificationBS/BA in Computer Science, Engineering, or technology-related field (or equivalent work experience).
Knowledge and Experience3+ years of experience securing cloud-based infrastructure, services and technologies.Solid understanding of Cloud Security concepts including secure design & configuration, principle of least-privilege, data protection and detection & response to threats & indicators of compromise (IoC).Hands on experience developing and utilizing a Security Information & Event Management (SIEM) tool, such as MS Sentinel.Working knowledge of Azure Log Analytics and Kusto Query Language (KQL).Experience applying hardening standards such as CIS Benchmarks or DISA STIG.Experience with vulnerability scanning and remediation.Strong understanding of Windows and Linux Operating Systems.Familiarity with PowerShell, Bash, and REST APIs.Familiarity with incident and change management.
Nice to HaveExperience working for a Cloud Service Provider (CSP), Managed Service Provider (MSP) or SaaS Provider.3+ years of experience working extensively in Microsoft Azure, Amazon Web Services (AWS) or Google Cloud Platform (GCP).Understanding of compliance frameworks and security controls (NIST, FedRAMP, SOC, ISO, PCI-DSS, HIPAA).Working knowledge of network security, TCP/IP, TLS, and firewall configuration.Understanding of identity management systems and protocols (Entra ID, Okta, OIDC, SAML, OAuth).Familiarity with Bicep, Terraform, Ansible, Azure DevOps, Git.Understanding of Agile, Scrum, DevSecOps concepts.Understanding of Azure Kubernetes Services (AKS) and container security.Any certifications such as Microsoft Certified: Azure Security Engineer Associate (AZ-500), Azure Administrator Associate (AZ-104), Security Operations Analyst Associate (SC-200), CompTIA Security+.
Personal AttributesDeal well with ambiguous/undefined problems ability to think abstractly.Affinity for customer service.Strong problem-solving skills.Ability to multitask a variety of projects.Passion for technology and learning.Self-motivated, self-starter.Ethical.Professional.Team player.Excellent written, verbal, and interpersonal skills.Experience with OneStream Software not required.Legally authorized to work for any company in the United States without sponsorship.
WHO WE AREOneStream is how today's Finance teams can go beyond just reporting on the past and Take Finance Further by steering the business to the future. It's the only enterprise finance platform that unifies financial and operational data, embeds AI for better decisions and productivity, and empowers the CFO to become a critical driver of business strategy and execution. Our vision is to be the operating system for modern finance, digitizing core financial functions and empowering the CFO to become a critical driver of business strategy. To learn more visit www.onestream.com.WHY JOIN THE ONESTREAM TEAMTransparency around corporate structure, salary, and benefitsCore value of customer successVariety of project work (not industry specific)Strong culture and camaraderieMultiple training opportunities
Benefits at OneStream Software OneStream employees are passionate, hardworking individuals who go above and beyond to keep our customers happy and follow through on our mission statement. They consistently deliver the best and in turn, we make every effort to keep them cared for and happy. A sample of the benefits we provide are:Excellent Medical PlanDental & Vision InsuranceLife InsuranceShort & Long Term DisabilityVacation TimePaid HolidaysProfessional DevelopmentRetirement Plan
OneStream is an Equal Opportunity Employer.#LI-CB1#LI-RemoteEqual Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)