Apply Now »

Lead DevSecOps Cloud Security Engineer - Dev-Ops/Systems Engineering

« Back to results

Ian Freeman Business Development Manager

Phone Work (623) 404-1757
Phone Fax

Job Info

Category Dev-Ops/Systems Engineering
Employment Type Full-Time Employment
Compensation $130000.00 - $145000.00
Location United States, AZ - 85250

Client Introduction

Job Description

This position will be responsible for leading security engineering development activities for Microsoft Azure and working together with security architecture team to deliver security ecosystem of blueprints and templates as a code.

As a Cloud Security DevSecOps Engineering you will be working closely with our cloud adoption team on security solutioning and design, developing internal cloud security hardening standards, and end-to-end strategies to address complex challenges.

Success in this role requires broad general technical security knowledge/expertise.

Position Description:

We are working with our Fortune 10 client to embark on an important mission to become the leader in cybersecurity for global healthcare. We are making significant investments to enhance our capabilities through talent development, resource levels, process maturity, and technology enablement.

As a Cloud Security DevSecOps Engineer you will be a key component of our team. The candidate will have a deep background in all aspects of security programming and engineering in the cloud including virtual resources, application, cloud, and mobile. He or she will work collaboratively with other cloud security engineers and security architects. The position works with stakeholders in Cloud Adoption, Infrastructure, Operations, Applications, and Data Management areas to ensure alignment and continues delivery of automated security control’s blueprints and templates.

Job Responsibilities

Responsibilities will include:

- Engineer cloud security solutions to support comprehensive vision and strategy for network and cloud security architecture to accomplish department objectives of protecting company systems and data while facilitating new and existing business models highly dependent on technology
- Responsible for automating security controls, data and processes to provide improved metrics and operational support
- Interpret security and technical requirements into business requirements and communicate security risks to relevant stakeholders
- Automate Cloud Security Policies, Standards in Cloud Platforms
- In depth knowledge of and Test Drive and Event driven development
- Create and maintain Terraform modules for GCP, Azure and AWS
- Analysis, requirements development, design, and governance of the security processes and tools ecosystem and drives consideration of cybersecurity tools and datasets to enhance detective and preventive control sets
- Perform Administration level work for Prisma Cloud and Twistlock
- Maintain a superior knowledge of the native cyber security capabilities available in the cloud and provide solutioning for advanced detective, preventative and respond capabilities
- Integrate various cybersecurity tools and datasets to enhance detective and preventive control sets
- Security solutions for cloud (X-as-a-Service) systems where security principals are codified and integrated directly into application designs and blueprints/formations
- Responsible for the thorough documentations of implementations, via technical documentation and run-books
- Participate in Scaled Agile planning and activities deploying enterprise cloud program within the company, identify customer needs, converting those into functional requirements and creating program roadmap, driving objectives and managing program backlog


Additional Knowledge & Skills:
- Experience working in a global software engineering function is a distinct plus
- Knowledge of core security principles is a plus
- Solid scripting capability, PowerShell, Bash
- Good understanding of SonarQube, Nexus IQ, Artifactory and Splunk
- Demonstrate a growth mindset – willingness to learn through collaboration
- Ability to establish goals, objectives, and work plans
- Thrives in cross functional team work
- Strong interpersonal and communications skills to build/ maintain ongoing business relationships

- Typically has 10+ years relevant experience; Less years required if has relevant Master’s or Doctorate qualifications

Required Experience

Critical Skills:

- 8+ years in software engineering and/or software architecture
- In depth knowledge of securing Azure, GCP or AWS
- Strong hands-on technical skills in Python, Lambda, Cloud Functions, Terraform
- Experience in creating and assessing threat modelling
- Advance Knowledge in Securing GKE, Kubernetes
- Proven experience working in engineering or architecture capacity creating infrastructure and security-as-a-code solutions for cloud network security and cloud security technologies and controls ( Eg. Firewalls, IDPS, Proxies, VPNs, DLP, SIEM, Mobile Security, Endpoint security, Google Security Command Center, Google Cloud Armor, Forseti, Azure Resource Manager, Azure Security Policies, Prisma Cloud and Azure Cloud Security
- Advanced experience with configuration management software such as chef, puppet or terraform
- Advanced experience in container security using with Twistlock and pipelines
- Experience in OPA, Cloud Physics and Chef InSpec
- Setup Continues Integration/Continues Delivery of build/integration for Infrastructure
- Solid understanding and of shifting left in security and DevSecOps practices
- Good understanding of Cloud Security Frameworks

Required Education

- 4-year degree in computer science, other engineering, or related field or equivalent experience
- Typically has 10+ years relevant experience; Less years required if has relevant Master’s or Doctorate qualifications

Previous MonthNext Month