Key skills
AWSAzureCloudCyber SecurityFirewallsIoTSplunkAIMachine LearningGoogle CloudIAMBlockchainRisk ManagementNetwork SecurityCloud Security
About this role
Role Overview
- Design Security Architectures: Architect and document secure solutions for enterprise environments, including applications, networks, and hybrid cloud systems, ensuring alignment with industry best practices
- Develop Comprehensive Strategies: Create security strategies tailored to organizational objectives, with a focus on scalability, resilience, and adaptability to emerging threats
- Secure Cloud Architectures: Design robust cloud architectures for AWS, Azure, and Google Cloud, incorporating secure access, encryption, and compliance measures
- Optimize Enterprise Security: Recommend tools and processes to enhance incident response capabilities, data protection, and threat detection
- Provide Deployment Oversight: Offer guidance during the implementation of architectural designs, ensuring adherence to security frameworks and strategic objectives
- Collaborate with Stakeholders: Work with cross-functional teams, including IT, compliance, and business units, to ensure architectural designs align with regulatory and business requirements
- Assess and Advise: Conduct detailed cloud security assessments, ensuring alignment with industry frameworks such as NIST CSF, ISO 27001, COBIT, GDPR, HIPAA, and CMMC. Provide actionable recommendations to address gaps and enhance security postures
- Design Secure Cloud Environments: Develop and implement cloud-native security architectures for platforms like AWS, Azure, and Google Cloud, incorporating zero-trust principles, identity and access management (IAM), and data encryption strategies
- Optimize Cybersecurity Programs: Lead initiatives to improve incident response plans, vulnerability management, and compliance strategies, driving resilience against emerging threats
- Harness Emerging Technologies: Evaluate the implications of AI, machine learning, IoT, and blockchain for cloud security, incorporating these innovations into client strategies
- Deliver Client Value: Collaborate with stakeholders to identify risks, implement remediation strategies, and ensure compliance with evolving regulatory landscapes
- Develop Best Practices: Create and implement cloud security policies, IT controls, and governance frameworks tailored to organizational needs
- Educate and Empower: Train client teams on cloud security best practices, fostering a culture of proactive risk management and awareness
Requirements
- Bachelor’s degree in Cybersecurity, Management Information Systems, Computer Science, Engineering, Finance with proper technical focus and experience
- 5+ years of progressive cybersecurity experience, including specializations in security architecture, governance, and operations
- Hands-on experience with security solutions including cloud security, endpoint security, vulnerability management, network security technologies such as firewalls and IPS/IPS, content filtering, authentication systems, log management, encryption a plus
- Hands-on experience designing and implementing secure architectures for leading cloud platforms, including: AWS (AWS Security Hub, Identity and Access Management, Config, CloudTrail, GuardDuty). Azure (Azure Security Center, Azure Policy, Microsoft Defender for Cloud). Google Cloud (Cloud Security Command Center, Identity-Aware Proxy, Chronicle)
- Expertise in security frameworks such as NIST CSF, ISO 27001, and COBIT
- Experience with analyzing and recommending practical guidance for how AI should be used to transform cyber security offense and defense capabilities
- Experience with IT/OT security architectures and strategies
- Experience with security information and event management (SIEM) tools like Splunk, Elastic Stack, or cloud-native solutions for threat detection and response
- Experience implementing zero-trust architectures, with a deep understanding of network segmentation, identity-centric security models, and real-time monitoring
- Certifications such as Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Certified Information Security Manager (CISM)
- Vendor-specific certifications such as AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer Associate, or Google Professional Cloud Security Engineer
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Firewalls
- IoT
- Splunk
Benefits
- Generous PTO
- 401k match up to $7,200 per year
- Opportunity to purchase company stock at a discount