Our client is currently seeking a Cloud Security Engineer
Job Type : Contract
Location : Hybrid with 3 days a week onsite in Chandler, AZ, Charlotte, NC, or Dallas, TX Pay Rate : Negotiable
Contact : role is integral to our digital transformation efforts, providing security and risk reduction for an enterprise cloud migration.
This position involves executing cloud security control validation and supporting evidence gathering to validate cloud controls.
Responsibilities :
- Assess cloud application workload, platform, and service implementations for compliance with the Cloud Control Framework
- Detect risks, control gaps, and deficiencies in control validation evidence to ensure the security of cloud workloads before deployment, or verify as part of a post-deployment QA process
- Collect proof of control compliance for the cloud platform, cloud application workloads, and cloud services
- Work in tandem with development teams, platform architects, and process engineers to collect proof of control compliance, negotiate as necessary to obtain adequate evidence for successful validation with a high degree of due diligence
Must Haves :
- 5+ years of experience in Information / Cybersecurity
- 2+ years of intermediate to advanced experience with public cloud computing / hosting (preferably Microsoft Azure and / or Google)
- Demonstrated comprehensive understanding of cloud technology and cloud security concepts, including cloud platforms / landing zone, cloud services, Identity & Access Management, boundary protection / network security, cloud storage, and data protection
- Solid understanding of and ability to apply knowledge of industry / government standards and frameworks to practical business and technical requirements (.
NIST, CIS, CSA, FFIEC, ISO)
- Experience with Agile Scrum or Kanban methodologies
- Intermediate to advanced experience working with Microsoft Office products
Nice to Have :
- Specific experience conducting Cloud implementation / migration control and / or security capability validations
- Experience in cloud auditing
- Cloud, Risk and / or Cybersecurity certifications (., CISA, CISM, CISSP, CRISC, CCSK)
- Cloud certifications specific to Azure, Google, or AWS
- Understanding of information security threats, trends, industry best practices, and security tools
- Experience in the finance sector or other regulated industry (., utilities, health care, government)
30+ days ago