Job Information

Stride, Inc. Cloud Security Engineer - JR106858_7-7698 in Boise, Idaho

This job was posted by https://idahoworks.gov : For more information, please see: https://idahoworks.gov/jobs/2362619 Job Description

The Cloud Security Engineer helps architect, deploy and operate a secure cloud application infrastructure that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to the business to elevate the company\'s security posture within a cloud computing infrastructure. An advanced role, the cloud security engineer helps deliver applications at scale and with resiliency to support business initiatives. The Cloud Security Engineer is also expected to possess advanced administrative and troubleshooting skills, and be knowledgeable about architecture, engineering and design principles. The Cloud Security Engineer should be adept at dealing with disparate applications and data systems to maintain the level of rigor required to adhere to business direction. Along with depth of system coverage, the role requires planning and design of policies and maintenance.

ESSENTIAL FUNCTIONS

: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.

  • Develop and maintain secure, resilient enterprise-grade cloud infrastructure in partnership with architects and system engineers.
  • Secure cloud-based applications across public, private, and hybrid environments in accordance with corporate policies.
  • Implement Identity and Access Management (IAM) controls across cloud environments to enhance security.
  • Ensure the use of secure configuration management tools (e.g., Jenkin, Chef, Ansible).
  • Assist with development and utilization of scripts (e.g., Python, java) to enhance cloud security through automation.
  • Monitor and assess new threats to recommend strategic initiatives for mitigating risks in cloud infrastructure.
  • Conduct remediation efforts based on findings from security assessments and audits.
  • Actively participate in security project meetings, guiding secure design and implementation of cloud solutions.
  • Maintain oversight and assess risks presented by external vendors or service providers in cloud environments.
  • Act as a key figure in the incident response process for cloud security incidents.
  • Stay current with regulatory, privacy, and industry best practices impacting cloud security.

Supervisory Responsibilities: This position has no formal supervisory responsibilities.

MINIMUM REQUIRED QUALIFICATIONS

:

  • Bachelor\'s degree in computer science, information assurance, MIS or related field AND
  • Five (5) years\' experience in cybersecurity as a practitioner and with at least 2-3+ years exposure with Amazon Web Services (AWS) OR
  • Equivalent combination of education and experience

Certificates and Licenses: One or more including CISSP, AWS Certified Solutions Architect - Professional, AWS Certified Security - Specialty, and Security+

OTHER REQUIRED QUALIFICATIONS:

Strong Linux and Windows support skills

Experienced in cloud networking architecture and cloud operations

Familiarity with tools such as Git, Jenkins, CloudFormation

Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI)

Experience with scripting languages such as Python, Ruby, PowerShell and JavaScript

Familiarity with key security concepts/frameworks such as OWASP, CVE, and CVSS

Proficient in automation and deploying CI and CD tools and services (Jenkins Pipeline as Code, Git, Maven)

Experience with Python, bash, Linux shell or similar

Experience integrating with native AWS services

Hands on experience building solutions with tools and services like AWS CloudFormation, Terraform, or custom build orchestration tools leve aging SDKs or directly interacting with APIs

Experience working one or more of the following languages: Java, Python, or Node.js

Experienced in the use of threat intelligence services in a production environment

Experience and understanding of various regulatory requirements and laws, including but not limited to: Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following: ISO 27001/2, ITIL or NIST

Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines.

Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively

Possess a strong work ethic, analytical and critical thinking, and skillful at meeting change requests at a moment\'s notice.

Strong listening and communication skills

Microsoft Office (Outlook, Word, Excel, PowerPoint, Project, Visio, etc.); Web proficiency

Ability to travel 10% of the time