The role of Cloud Security Engineer uses cloud technology to recognize and stop threats to cloud systems, ensure security controls are properly implemented and configured in cloud environments, and create cloud-based programs and systems.
This role includes identifying and mitigating potential cloud-based security risks and developing and implementing security controls for the cloud, such as access control, data encryption, and network security.
This position is also accountable for providing direction and support for other IT staff members.
Responsibilities
- Ensures compliance with relevant security regulations and standards.
- Conducts cloud security assessments and audits to locate and address vulnerabilities.
- Configures firewalls to protect cloud servers, cloud databases, and sites hosted in cloud infrastructure.
- Implements cloud security monitoring and alerting systems to detect and respond to unauthorized access and potential threats.
- Manages access to cloud platforms and cloud services .
- Ensures cloud infrastructure installations and upgrades are made in accordance with established policies, best practices, procedures, and regulations.
- Provides subject matter expertise in securing cloud initiatives.
- Remediates audit findings related to cloud security.
- Interfaces with other engineers, administrators, and project managers within the IT department; takes an active role in determining overall company technology and development strategies and specific strategies for individual projects.
- Performs other duties as required.
Education, skills, & abilities
- Requires a bachelor’s degree in computer science, information technology, engineering, or mathematics, from an accredited university.
- Requires one or more of the following professional certifications:
- Certified Cloud Security Professional (CCSP)
- Microsoft Certified Azure Security Engineer Associate
- AWS Certified Security Specialty
- CompTIA Cloud+
- Certificate of Cloud Security Knowledge (CCSK)
- Certified Kubernetes Security Specialist (CKS)
- GIAC Cloud Security Automation (GCSA)
- Google Professional Cloud Security Engineer
- Requires 3-5 years of cloud administration, cloud engineering, and cloud security experience.
- Experience in Azure and Microsoft 365 cloud security is required. Experience in applying best practices and experience with tools for assessing cloud security. Experience in securing a hybrid on-prem AD and Microsoft AD cloud environment.
- Experience with containerization (Kubernetes) is a plus.
- General understanding of cloud databases is a plus.
- Requires knowledge of products, platforms, and services inside the cloud infrastructure for a particular vendor, such as Amazon, Microsoft Azure, Google, and VMware.
- Strong understanding of relevant regulations, including GLBA Part 748.
- Excellent written, oral, interpersonal communication, and customer service skills. Highly self-motivated, self- directed, and attentive to detail.
- Ability to conduct and direct research into IT issues and products. Ability to present ideas in business-friendly and user-friendly language.
- Ability to multi-task and work under time constraints to meet project deadlines.
- Requires On-Call availability for support escalation.
- Ability to appear for work on time, follow directions from management, interact effectively with co-workers, understand, and follow work rules and procedures and accept constructive criticism.
REPORTING STRUCTURE
- This position reports directly to the Director of IT Infrastructure.
- There are no direct reports under this position.
PHYSICAL REQUIREMENTS
- Ability to tolerate periods of continuous sitting.
ENVIRONMENTAL CONDITIONS
- Work is primarily performed within an enclosed office. Subject to standard background noise found in an office environment.
Note: Staff member is expected to perform various tasks, projects and administrative duties as assigned.
Management reserves the right to assign or change duties and tasks to this position at its discretion.
Salary Range
$100,947.8080 (min) - $151,421.7120 (max)
