Please note: Principals Only, No 3rd Party Recruiters. Thank you!
Please Note: This position requires US Citizens with Active DoD Secret Clearance
Serry Systems is seeking a Cloud Security Engineer to provide functional and technical leadership and support to platform teams and business stakeholders.
Develop security requirements and build automated controls in areas of identity and access management, logging and monitoring, infrastructure security, security configuration, data protection, CI/CD, vulnerability analysis and compliance validation
Develop tooling to provide detective and reactive security configuration validation
Work closely with development and platform teams in an agile workflow to promote and mature DevOps/DevSecOps methodologies
Partner with infrastructure teams to embed security best practice into their infrastructure as code development lifecycle.
Conduct analysis, design, development, implementation and continued evolution of modern software-defined infrastructure, application patterns and technology solutions.
Support cloud certification activities, system hardening, vulnerability testing and scanning
Create IT security architectural artifacts, provide architectural analysis of IT security features and relate the existing system to future customer requirements
Continuously evaluate the client organization's existing application security practice, help define, standardize and measure security-related activities, demonstrating concrete improvements to the application assurance program within the organization
Monitor information systems for security incidents and vulnerabilities; develop monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends
Respond to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches
You must possess the minimum qualifications:
BA/BS Bachelor's Degree in Information Technology, Computer Science, Computer Engineering, or IT related experience
5+ years of experience in public cloud security, compliance, and risk management
5+ years of Cloud Computing experience including experience with AWS, network security, and system security
3+ years in AWS development
3+ years of security compliance and security monitoring
Expertise in security in an AWS environment and AWS cloud security concepts
AWS Certification (Associate or Professional)
Applicable Security Certification (CISSP, CCSP, CISA, CEH/CPT, AWS Security)
DevOps and DevSecOps experience
Experience with Native security controls in AWS, cloud security controls
SOC/SIEM/MDR/Security Orchestration and Automation
Proficiency in designing complex network with multiple layers of security
Experience in identifying/resolving technical issues during implementation
Experience in creating High Level design document and low-level design documents.