Sr. Cloud Information Security Engineer
United States of America
Full Time
2 hours ago
No H1B
Key skills
Microsoft AzureAzure Security Engineer Associate CertificationCloud Information SecurityInfrastructure as CodeCI/CD pipelinesCloud-based vulnerability managementCybersecurity frameworksCloud application developmentCybersecurity incident responseNetwork architectureCloud threat modelingVulnerability management toolsSecurity frameworks CMMCSecurity frameworks SOC2Ticket/Case ManagementGitLabTerraformIndependent work ethicAzureCI/CDCloud Security
About this role
Forescout Technologies Inc. is a leader in cybersecurity, dedicated to protecting critical infrastructure from cyber threats. They are seeking a Sr. Cloud Information Security Engineer to manage cloud security operations and collaborate with various teams to identify and mitigate risks within cloud environments.
Responsibilities:
- Monitor the environment against specified security frameworks
- Triage and respond to incidents according to the Incident Response Cycle
- Work closely with global Information Security teammates through video conference and messaging technology
- Work with various tools such as:
- Cloud Security Posture Monitoring tools
- Vulnerability Scanners
- Security Incident and Event Managers
- Testing tools (Burp Suite and the like)
- Firewalls
- Compile and present monthly operational metrics
- Build process and environment documentation
- Assist with compiling evidence for compliance audits
- Assist with projects as assigned
- Be the Subject Matter Expert on assigned tools
Requirements:
- Bachelor's degree in the field of Information Security, Information Assurance, Computer Science, Information Technology, or similar, OR 10+ years of experience with Cloud Computing technologies will be considered
- A current and active Microsoft Azure Security Engineer Associate Certification (Required), Microsoft Cybersecurity Architect Expert, or demonstratable direct hands-on experience within Microsoft Azure at the relevant level for this role
- 5+ years of experience in a Cloud Information Security role supporting a corporate Information Security Program
- A passionate, team-focused, but independently driven work ethic
- In-depth, hands-on knowledge and skills with Azure, Infrastructure as Code, and CI/CD pipelines
- In depth knowledge and experience with cloud-based vulnerabilities and exploits, as well as their remediations
- Knowledge and exposure to cybersecurity frameworks
- Experience working in or with cloud application development teams
- Cybersecurity incident response (Cloud experience preferred)
- A strong understanding of Network support and architecture (On premise and cloud)
- Cloud based threat modeling
- Ability to work with all levels of the business to obtain information related to existing controls, configurations, and processes
- Ability to communicate complex information security risks and scenarios to a general audience
- Ability to work with minimal supervision
- Experience with Vulnerability management tools (WIZ, Rapid7, Nessus, etc) (Expert)
- Experience/Exposure to Security frameworks (CMMC and SOC2 preferred) (Novice)
- Information Security Incident Triage and Handling (Intermediate)
- Ticket/Case Management (Expert)
- Gitlab/Terraform/IAC (Intermediate/Expert)
- Ability to create and maintain documentation (Intermediate)