Key skills
Security architectureCloud security measuresMulti-cloud securityThreat analysisNIST standardsISO27001 specificationsSPLUNKForensic investigationsSecurity policiesGSECCEHCISACCSPAWS Solutions ArchitectEndpoint DetectionResponseEmail Threat ManagementSIEM engineeringData Loss ProtectionCloud Enterprise Network SecurityCommunication skillsProblem-solving skillsAIMLMLOpsAWSSplunkCI/CDRisk ManagementNetwork SecurityCloud Security
About this role
DIA Software Solutions is reaching out about an exciting opportunity for a Sr Network Security Engineer. The role focuses on designing, implementing, and maintaining security controls for cloud infrastructure and AI/ML platforms, ensuring compliance and enabling secure innovation.
Responsibilities:
- Design, implement, and manage security controls for cloud platforms, including infrastructure-as-a-service (IaaS), platform-as-a-service (PaaS), and cloud-native workloads
- Secure AI and ML systems, including model development environments, training pipelines, data pipelines, APIs, and inference services
- Assess and mitigate risks related to cloud misconfigurations, identity and access management, data exposure, and insecure APIs
- Implement and maintain cloud security tooling such as CSPM, CWPP, CIEM, container security, and API security solutions
- Collaborate with engineering, DevOps, data science, and AI teams to embed security into CI/CD pipelines and ML workflows (DevSecOps / MLOps)
- Conduct security architecture reviews, threat modeling, and risk assessments for cloud and AI initiatives
- Define and enforce security standards, guardrails, and best practices for cloud and AI environments
- Monitor cloud and AI environments for security events, investigate alerts, and support incident response activities
- Using TTP Add/Modify Splunk alerts to triage notables
- Ensure protection of sensitive data used in AI systems through encryption, key management, data loss prevention, and privacy controls
- Support compliance with regulatory, contractual, and internal security requirements (e.g., SOC 2, ISO 27001, NIST, GDPR)
- Stay current on emerging cloud and AI threats, vulnerabilities, and industry best practices
Requirements:
- Proven work in security architecture, demonstrating solutions delivery, principles and emerging technologies, designing and implementing security solutions. Continuous monitoring and making improvements to those solutions
- Designing and implementing the security measures needed to protect data stored on public clouds against unauthorized access, including secure authentication methods, encryption, access control lists, intrusion detection systems, firewalls, other measures
- Understanding of multi-cloud security architectures covering infrastructure, information security tools, cloud-based application security and other cloud-based technology and infrastructure architectures
- Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements
- Proven expertise in security considerations of cloud computing: They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks
- Knowledge and understanding of threat analysis and assessment of potential and current information security risk/threats and designing solutions to mitigate those threats
- Knowledge and experience working with relevant National Institute of Standards and Technology (NIST) standards
- Knowledge and experience working with ISO27001 specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization s risk management
- Experience with SPLUNK, creating alerts, executive reports, dashboards
- Designing and developing security architectures that align with an organization s strategic goals. Creation of architectural artifacts for key technology initiatives
- Ability to resolve complex security issues in diverse and decentralized environments; to learn, communicate, and teach new information and security technologies; and to communicate effectively
- Conduct forensic investigations on cyberattacks to determine how they occurred and how they can be prevented in the future
- Creating/reviewing/updating security policies and standards for the public/private/hybrid cloud contexts
- GSEC, CEH, CISA, CCSP desired
- Certification as an AWS Solutions Architect, Cloud Security Certification, and/or OpenStack Administrator Certification a plus. (Other cloud-related certification also a plus.)
- Experience with Endpoint Detection and Response (i.e. EndGame, Crowdstrike, CyberReason). Detect and respond to alerts from end point detection response tools
- Experience with Email Threat Management (i.e. Proofpoint, MimeCast, Microsoft)
- Experience with SIEM engineering design/management/analysts (i.e. Splunk, Rapid7, SumoLogic)
- Experience with Data Loss Protection/Cloud Access Security Brokers (i.e. Symantec, Microsoft, Bitglass, Netskope)
- Experience with Cloud Enterprise Network Security (i.e. Cisco Umbrella, Palo Alto, ZScaler)