Senior Cloud Engineer

Job Description

Job Description

Are you a Senior Cloud Engineer ? Do you want to Implement security controls in an enterprise environment and develop security solutions for information protection in a large scale environment?

If so, then you might be Fivesky's next Senior Cloud Engineer!

Who you are :

• Strong Cloud Security Engineer who is able to configure Active Directory connections over appropriate network TCP ports using authentication protocols like LDAP and to configure security group policies in Active Directory for user / group exceptions in DLP policy to restrict data access and usage.
• An advanced DLP Engineer capable of building DLP Detection rules to monitor information being stored and transferred over different TCP ports from endpoint devices and integrate / extend DLP capabilities to cloud applications for monitoring protected data-in-motion and data-at-rest using Cloud Access Security (MCAS / CASB).
• Strong with scripting to automate various aspects of security procedures using scripting languages based on Operating system in use.
• Proficient and comfortable with Networking to configure detection server settings to route network traffic through specific TCP ports for different network protocols and understand network diagrams and network technologies like VPN tunneling, Network Address Translation (NAT), OSI model, LAN / WAN, SSL, packet trace analysis, etc.

for structuring the DLP network architecture and network traffic routing.

Bachelor's Degree is required in Computer Science or Computer Information Systems or Electrical Engineering.

What you will do :

• Architect and Engineer Data Loss Prevention (DLP) solutions across the enterprise environment and integrate DLP controls across user environments.
• Advise Data Loss Policy development as per the company's evolving business needs and configure DLP policies to prevent data loss in email and web traffic.
• Perform DLP three-tier installations and version upgrades for production, along with conducting periodic health checks and performance assessments.
• Create procedures and workflows for production deployment and publish fixes in knowledge base.
• Configure Network scans on appropriate DLP detection servers to identify stored sensitive information at-rest and quarantine data classified as Restricted.
• Generate data indexes / fingerprints remotely to be later used in detection rules within DLP policies for exact data match (EDM) detection.
• Configure prevent actions for protocols like HTTP / S, FTP, SMTP, SMB, SFTP, etc., including web block, email encryption and quarantine response rules for outgoing traffic.
• Troubleshoot Network issues relating to Firewall, traffic routing, network proxy, gateway - involving application and transport layer network protocols.
• Develop Proxy auto-config (PAC) files to route network traffic through defined proxy servers and configure IP addresses of specific 'Network Prevent' DLP detection servers to use ICAP protocol.
• Enable Kerberos authentication by modifying Kerberos initialization files for authenticating users to a network domain using domain credentials..
• Generate key pair and configure keys and certificates to establish end-to-end TLS email encryption.
• Collaborate with the Operations team to support troubleshooting of production issues and perform root cause analysis on data loss due to detection fails on network or email traffic from the DLP system.
• Debug network traffic logs to troubleshoot critical production issues and fine-tune service memory settings depending on traffic load on detection servers.
• Use Security Incident and Event Management tools to monitor for suspicious user activity found in network traffic.
• Develop workflows for DLP Incident alerting, response, and remediation. Perform DLP incident analysis to identify malicious insider and to identify false positives for further fine-tuning of detection rules in DLP policies.
• Build user attributes for identified DLP security incidents.
• Modify network firewall rules to allow network communication between various DLP detection servers and to ensure data detection in all network traffic, while making sure no company firewall policy is violated

Who we are :

• Fivesky is a fast-growing, global technology solution provider. We partner with the world's largest financial service firms to deliver networking / infrastructure, cybersecurity, and cloud-based solutions for complex, global projects.
• At Fivesky, our employees are our greatest asset, and we strive to build a strong team culture centered on highly competitive compensation, professional development, career advancement, and fun.
• This is an FTE position in Alpharetta, GA . The compensation package is based on experience and qualifications. Fivesky is an equal opportunity employer.

Fivesky prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, sex, age, color, religion, national origin, sexual orientation, disability status, genetic information, protected veteran status (United States positions), or any other characteristic protected by law.

FS-RID-0467)