Sr. Cloud Information Security Engineer
United States of America
Full Time
2 hours ago
No H1B
Key skills
Microsoft AzureMicrosoft Azure Security Engineer Associate CertificationCloud Information SecurityInfrastructure as CodeCI/CD pipelinesCloud-based vulnerabilitiesexploitsCybersecurity frameworksCybersecurity incident responseNetwork supportarchitectureCloud threat modelingVulnerability management toolsSecurity frameworks CMMCSecurity frameworks SOC2Information Security Incident TriageHandlingTicket/Case ManagementGitLabTerraformIndependent work ethicAzureCI/CDCloud Security
About this role
Forescout Technologies Inc. is a leader in cybersecurity solutions, committed to protecting critical infrastructures from cyber threats. The Sr. Cloud Information Security Engineer will manage cloud security operations, collaborating with various teams to identify and mitigate risks in cloud environments.
Responsibilities:
- Monitor the environment against specified security frameworks
- Triage and respond to incidents according to the Incident Response Cycle
- Work closely with global Information Security teammates through video conference and messaging technology
- Work with various tools such as: Cloud Security Posture Monitoring tools
- Vulnerability Scanners
- Security Incident and Event Managers
- Testing tools (Burp Suite and the like)
- Firewalls
- Compile and present monthly operational metrics
- Build process and environment documentation
- Assist with compiling evidence for compliance audits
- Assist with projects as assigned
- Be the Subject Matter Expert on assigned tools
Requirements:
- Bachelor's degree in the field of Information Security, Information Assurance, Computer Science, Information Technology, or similar, OR 10+ years of experience with Cloud Computing technologies will be considered
- A current and active Microsoft Azure Security Engineer Associate Certification (Required), Microsoft Cybersecurity Architect Expert, or demonstratable direct hands-on experience within Microsoft Azure at the relevant level for this role
- 5+ years of experience in a Cloud Information Security role supporting a corporate Information Security Program
- A passionate, team-focused, but independently driven work ethic
- In-depth, hands-on knowledge and skills with Azure, Infrastructure as Code, and CI/CD pipelines
- In depth knowledge and experience with cloud-based vulnerabilities and exploits, as well as their remediations
- Knowledge and exposure to cybersecurity frameworks
- Experience working in or with cloud application development teams
- Cybersecurity incident response (Cloud experience preferred)
- A strong understanding of Network support and architecture (On premise and cloud)
- Cloud based threat modeling
- Ability to work with all levels of the business to obtain information related to existing controls, configurations, and processes
- Ability to communicate complex information security risks and scenarios to a general audience
- Ability to work with minimal supervision
- Experience with Vulnerability management tools (WIZ, Rapid7, Nessus, etc) (Expert)
- Experience/Exposure to Security frameworks (CMMC and SOC2 preferred) (Novice)
- Information Security Incident Triage and Handling (Intermediate)
- Ticket/Case Management (Expert)
- Gitlab/Terraform/IAC (Intermediate/Expert)
- Ability to create and maintain documentation (Intermediate)