Government Cloud Security Engineer-L3Duration- Long Term ContractMinimum years of 10-12 YearsLocation - Palo Alto, CAThe person in this role will be mainly responsible for managing and supporting IAM Org Policies, SSO and security policies in AWS, Azure & GCP Gov Clouds Responsibilities Include : Develop and Maintain Cloud Operations and Optimization Platform / services.
Review new requirements and provision account, tenant / subscription, project in AWS, Azure and GCP respectively.Setup appropriate tags for these new accounts for finance cost tracking.
Manage and support various IAM, Access, logging and Security Policies on AWS, GCP & Azure Gov Clouds.Collaborate with the security team to design and deploy various security control services.
Support and manage marketplace purchases in public clouds.Coordinate with vendors for new services / licenses procurement.
Work with Cloud vendors to enable Savings Plans, commitment purchase / management on AWS, Azure and GCP.Collaborate with various stakeholders for ongoing cost optimization opportunities.
Support Finance and procurement team on Billing and Invoices related queries. Develop and Maintain Cloud Operations and Optimization Platform / services.
Skills You’ll Need : 7+ years Cloud Ops and Engineering experience of Cloud Fundamental provisioning, IAM, Logging in AWS, Azure and GCP.
Azure AAD + IAM modeling, PIM, Management Groups, Enterprise Mgmt., Application Mgmt.GCP IAM, Org Policies, VPC Service Controls, Assured WorkloadsAWS IAM + SSO, SCP Policies, Cloud Trail, Cloud Watch, RAMAzure Tenant, Subscription, IAM management.
GCP Project, Billing, IAM managementAutomation Skills. Python, Terraform. Cost Optimization.Collaboration and presentation skills.
Understanding of FedRAMP operational controls, past Fed Ramp environment experience would be a big plus