Qualifications and Experience Required
- 5+ years of information technology and/or information security experience.
- 3+ years in an engineering role designing and supporting public clouds AWS, GCP, Azure.
- 3+ years of hands-on technical experience with at least one cloud platform in security or infrastructure implementation and operations.
- 5+ years of hands-on technical experience with infrastructure systems such as networking (e.g. WAF, Firewall and load balancing), operating systems, SCCM and endpoint engineering, and infrastructure automation implementation or operations.
- 3+ years of working with different Cloud platforms (Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS)) and environments (Public, Private, Hybrid).
- 3+ years of working experience with Virtualization including security for one or more of the following: Compute, Network, Storage, End-point, Application.
- Depth of experience with multiple security technologies such as Firewalls, Intrusion Detection/Prevention Systems, Vulnerability Scanning, WAF, Wireless LAN, NAC, DLP, DDoS Mitigation, WAN security, CASB, SIEM, Content Filtering, Cloud Security gateways, Secure Proxies, SSL crypto solutions, and automation.
- Demonstrated capability to design, deploy, operationalize and automate secure and highly scalable enterprise systems on public cloud AWS, Azure and Google.
- Experience with secure software development, data protection, cryptography, key management, identity and access management (IAM), network security (VPNs) within cloud environments.
- Experience in architecting and deploying secure software defined and virtualized networks.
- Knowledge in designing, implementing, and managing DevSecOps capabilities in cloud offerings using CI/CD toolsets and automation.
- Experience in managing pipelines and working with tools such as Jenkins, Ansible, Chef, Puppet, Salt stack and Terraform.
- Experience in installing and configuring native and third-party databases in the cloud such as MongoDB, MYSQL, Couchbase, Oracle.
- Experience in agile leading-practices, processes, and tools in support of DevSecOps processes with respect to Test Automation.
- Understanding of industry regulatory and compliance requirements (i.e., FedRAMP, PCI-DSS, NIST, HIPAA) and skilled at interpreting the compliance and security requirements into implementable and repeatable controls.
- Experience in the creation and maintenance of security policies and procedures, managing the protection of information systems and assets.
- Client interfacing, relationship building, and consulting skills.
Additional Requirements:
- Bachelors degree is required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
- Identify opportunities to improve engagement profitability.
- Contribute to a strong client relationship through interactions with client personnel.
- Experience with leading multiple distributed teams across different geographies.
- Participate in and actively support mentoring relationships within practice.
Preferred:
- Previous Consulting or Big 4 experience preferred.
- Experience with previous cloud migrations is a plus.
- Depth of experience and knowledge in cloud platform technologies such as Amazons VPC, Elastic Load balancing, Global Accelerator, Transit Gateway, Security Groups, Identity and Access Management IAM, Route 53, Key Management Service (KMS), PrivateLink Direct Connect, Virtual Private Network, CloudFront and API Gateway.
- Experience with cloud automation and container tools like bash scripting, Ansible, Docker, Chef or Puppet.
- Experience with JSON, Python, XML and ability to write cloud automation scripts desired.
Desired Skills:
- Cyber Cloud Security ArchitectAWSMicrosoft AzureCloud Security Infrastructure Azure Security Center