Cloud Security Engineer
US - VA - Remote
Job Description
The Cloud Security Engineer helps architect, deploy and operate a secure cloud application infrastructure that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to the business to elevate the company’s security posture within a cloud computing infrastructure. An advanced role, the cloud security engineer helps deliver applications at scale and with resiliency to support business initiatives. The Cloud Security Engineer is also expected to possess advanced administrative and troubleshooting skills, and be knowledgeable about architecture, engineering and design principles. The Cloud Security Engineer should be adept at dealing with disparate applications and data systems to maintain the level of rigor required to adhere to business direction. Along with depth of system coverage, the role requires planning and design of policies and maintenance.ESSENTIAL FUNCTIONS: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.
- Develop and maintain secure, resilient enterprise-grade cloud infrastructure in partnership with architects and system engineers.
- Secure cloud-based applications across public, private, and hybrid environments in accordance with corporate policies.
- Implement Identity and Access Management (IAM) controls across cloud environments to enhance security.
- Ensure the use of secure configuration management tools (e.g., Jenkin, Chef, Ansible).
- Assist with development and utilization of scripts (e.g., Python, java) to enhance cloud security through automation.
- Monitor and assess new threats to recommend strategic initiatives for mitigating risks in cloud infrastructure.
- Conduct remediation efforts based on findings from security assessments and audits.
- Actively participate in security project meetings, guiding secure design and implementation of cloud solutions.
- Maintain oversight and assess risks presented by external vendors or service providers in cloud environments.
- Act as a key figure in the incident response process for cloud security incidents.
- Stay current with regulatory, privacy, and industry best practices impacting cloud security.
Supervisory Responsibilities: This position has no formal supervisory responsibilities.
MINIMUM REQUIRED QUALIFICATIONS:
- Bachelor's degree in computer science, information assurance, MIS or related field AND
- Five (5) years’ experience in cybersecurity as a practitioner and with at least 2-3+ years exposure with Amazon Web Services (AWS) OR
- Equivalent combination of education and experience
Certificates and Licenses: One or more including CISSP, AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, and Security+
OTHER REQUIRED QUALIFICATIONS:
- Strong Linux and Windows support skills
- Experienced in cloud networking architecture and cloud operations
- Familiarity with tools such as Git, Jenkins, CloudFormation
- Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI)
- Experience with scripting languages such as Python, Ruby, PowerShell and JavaScript
- Familiarity with key security concepts/frameworks such as OWASP, CVE, and CVSS
- Proficient in automation and deploying CI and CD tools and services (Jenkins Pipeline as Code, Git, Maven)
- Experience with Python, bash, Linux shell or similar
- Experience integrating with native AWS services
- Hands on experience building solutions with tools and services like AWS CloudFormation, Terraform, or custom build orchestration tools leveraging SDKs or directly interacting with APIs
- Experience working one or more of the following languages: Java, Python, or Node.js
- Experienced in the use of threat intelligence services in a production environment
- Experience and understanding of various regulatory requirements and laws, including but not limited to: Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following: ISO 27001/2, ITIL or NIST
- Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines.
- Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively
- Possess a strong work ethic, analytical and critical thinking, and skillful at meeting change requests at a moment’s notice.
- Strong listening and communication skills
- Microsoft Office (Outlook, Word, Excel, PowerPoint, Project, Visio, etc.); Web proficiency
- Ability to travel 10% of the time
- Ability to clear required background check
Work Environment: The work environment characteristics described here represent those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.
- This is an office- or home-based position. The noise level in the office is usually moderate (computers, printers, light foot traffic).
Compensation & Benefits: Stride, Inc. considers a person’s education, experience, and qualifications, as well as the position’s work location, expected quality and quantity of work, required travel (if any), external market and internal value when determining a new employee’s salary level. Salaries will differ based on these factors, the position’s level and expected contribution, and the employee’s benefits elections. Offers will typically be in the bottom half of the range.
- We anticipate the salary range to be $66,379.50- $170,037.60. The upper end of this range is not likely to be offered, as an individual’s compensation can vary based on several factors. These factors include, but are not limited to, geographic location, experience, training, education, and local market conditions. Eligible employees may receive a bonus. Stride offers a robust benefits package for eligible employees that can include health benefits, retirement contributions, and paid time off.
The above job is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions and perform any related duties as assigned by their supervisor. All employment is “at-will” governed by the state law where the employee works. It is further understood that the “at-will” nature of employment is one aspect that cannot be changed except in writing and signed by an authorized officer.
Job Type
RegularThe above job is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as assigned by their supervisor. All employment is “at-will” as governed by the law of the state where the employee works. It is further understood that the “at-will” nature of employment is one aspect of employment that cannot be changed except in writing and signed by an authorized officer.
Stride, Inc. is a Federal Contractor, an Equal Opportunity/Affirmative Action Employer and a Drug-Free Workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected Veteran status age, or genetics, or any other characteristic protected by law.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)
ApplyJob Profile
Ability to travel 10% of the time
Benefits/PerksHealth benefits Paid Time Off Reasonable accommodations Retirement contributions Robust benefits package Training
Tasks- Architect secure cloud infrastructure
- Assess risks
- Conduct security assessments
- Implement IAM controls
- Incident response
- Manage vendor risks
- Monitor threats
- Participate in security projects
- Secure cloud applications
Access Accommodations Analytical APIs Assessments Automation AWS Bash Best Practices Business C CI/CD Cloud Computing Cloud environments CloudFormation Cloud networking Cloud operations Cloud Security Communication Computer Science Critical thinking CVE CVSS Cybersecurity Data Protection Development Education Excel Git IAM Incident Response Innovation IPsec ITIL Java Javascript Jenkins LDAP Linux Microsoft Office NIST Node.js Operations Outlook OWASP PKI Planning PowerPoint PowerShell Python Ruby Science Scripting SSL/TLS Terraform Threat Intelligence Training Troubleshooting VPN Web proficiency Windows Word Writing
Experience5 years
EducationBachelor's Bachelor's degree Bachelor's degree in Computer Science Business Computer Science Information assurance MIS Related Field
CertificationsAWS Certified Security Specialty AWS Certified Solutions Architect - Professional CISSP ITIL Security+
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9