Ampcus, Inc
IT Engineer (Cloud Security Engineer)
Ampcus, Inc, Vienna, Virginia, United States, 22184
Qualifications:
Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management.
Experience with certificate management for IaaS and PaaS elements.
Experience with Azure AD, Azure Resource Management Templates and Azure policies.
Experience with Azure Key Vault integration and key management.
Experience with VSTS release management for Azure Key Vault and other IaaS and PaaS elements.
Hands-on development and scripting skills in PowerShell 5.
7+ years experience working in a technical role with a minimum of 3 years experience focused on information security and access control.
Strong knowledge of information security and access controls.
Industry certification (CISSP, CISA, CISM, CEH) of high interest.
Financial industry experience preferred.
Experience with CheckPoint Next Generation Firewall and Threat Prevention Suite (nice to have).
Responsibilities:
Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) for the Azure environment.
Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and manager audiences.
Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure.
Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions.
Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
Support the development and delivery of a comprehensive ISP for the entire organization.
Develop and maintain documentation of all Security products including specific tools, technologies and processes.
Participate in Information Security Incident Response activities for the environment.
Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services.
Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
Manage remediation efforts for any gaps reported in audits or recommended process improvements.
Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to the cloud strategy.
#J-18808-Ljbffr
Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management.
Experience with certificate management for IaaS and PaaS elements.
Experience with Azure AD, Azure Resource Management Templates and Azure policies.
Experience with Azure Key Vault integration and key management.
Experience with VSTS release management for Azure Key Vault and other IaaS and PaaS elements.
Hands-on development and scripting skills in PowerShell 5.
7+ years experience working in a technical role with a minimum of 3 years experience focused on information security and access control.
Strong knowledge of information security and access controls.
Industry certification (CISSP, CISA, CISM, CEH) of high interest.
Financial industry experience preferred.
Experience with CheckPoint Next Generation Firewall and Threat Prevention Suite (nice to have).
Responsibilities:
Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) for the Azure environment.
Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and manager audiences.
Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure.
Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions.
Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
Support the development and delivery of a comprehensive ISP for the entire organization.
Develop and maintain documentation of all Security products including specific tools, technologies and processes.
Participate in Information Security Incident Response activities for the environment.
Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services.
Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
Manage remediation efforts for any gaps reported in audits or recommended process improvements.
Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to the cloud strategy.
#J-18808-Ljbffr