Job Information
SANS Institute Cloud Security Engineer in Denver, Colorado
Cloud Security Engineer
· Denver, Colorado
Employment Type Full-Time
Minimum Experience Mid-level
SUMMARY
We are seeking a Cloud Security Engineer to join our team within the Information Security Team. The primary goal of the Cloud Security Engineer is to assist the Information Security Team in implementing security throughout our cloud infrastructure. We are looking for an individual who has integrity, tenacity, humility, and desires to pursue excellence. The right individual would also be a self-starter who is adaptable, has excellent communication skills, can be relied on, is detailed oriented, and can work well individually or as part of a team.
This is a remote position, so the right individual would need to be comfortable working in a home office setting.
RESPONSIBILIITES:
Engineer, implement, and monitor security measures for the protection of server infrastructure, Active Directory, and AWS containers
Identify, assess, diagnose, and remediate, security issues and threat vectors impacting our cloud infrastructure
Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements
Provide guidance on security strategies, processes, response and technologies to security operations and other teams
Responsible for automating security controls, data and processes to provide improved metrics and operational support
Other duties as assigned.
REQUIRED SKILLS AND ABILITIES:
Experience in distributed, client-facing production environments involving hybrid network topologies (cloud and traditional data centers)
Experience with daily operations and maintenance of cloud-security technologies (VPC, Security Groups, etc.) and cloud-permission systems (IAM, Okta, Azure)
Familiarity using AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, CloudFormation, CloudWatch, Route 53, etc.)
Experience with Identity and Access concepts and technologies to secure production and corporate access, such as: SSO, SAML, ADFS
5+ years of experience in information security, with a concentration in Security Operations
Direct, hands-on experience with security assessment tools, such as WireShark, nmap, Nessus, BurpSuite, etc.
Knowledge of daily operations relating to the technologies listed above
ADDITIONAL SKILLS AND ABILITIES:
- Experience architecting, designing, and programming applications and ample experience in high level programming languages
REQUIRED EDUCATION/EXPERIENCE:
Bachelor’s Degree in Information Technology, Information Security, Information Systems Management, Computer Science, or equivalent work experience
Security Related Information Technology certifications: GCSA, GWEB, GCPN, or equivalent Cloud and IT Security related industry certifications, AWS associate or higher certification
EOE, including disability/vets.