Vaco by HighspringRemote
Cloud & Security Engineer (Florida, Remote)
United States of America
Full Time
3 weeks ago
$115,000 - $125,000 USD
H1B Sponsor Likely
Key skills
AWSAzureTerraformCloudFormationIAMAzure ADEntra IDOktaActive DirectoryIdentity ManagementSSOSingle Sign-OnSplunkPenetration Testing
About this role
Vaco by Highspring is seeking an Infrastructure & Security Engineer to join their client's team. The role involves managing cloud infrastructure, developing cybersecurity strategies, and implementing identity and access management solutions.
Responsibilities:
- Manage and optimize cloud infrastructure and services
- Design and implement cloud solutions for scalability, redundancy, and cost efficiency
- Monitor cloud resources, manage access controls, and ensure compliance with security best practices
- Experience with Infrastructure as Code
- Understanding of hybrid cloud or multi-cloud connectivity (VPN, Direct Connect)
- Container and orchestration awareness
- Develop and maintain a comprehensive cybersecurity strategy aligned with business objectives
- Design and implement security controls, systems, and protocols to protect company assets from cyber threats
- Experience with SIEM platforms and security event monitoring (Microsoft Sentinel, Splunk, or equivalent)
- Familiarity with EDR/XDR solutions for endpoint threat detection
- Knowledge of DLP tools
- Conduct regular security assessments, vulnerability scans, and penetration testing to identify and address potential security weaknesses
- Design and implement email security protocols and technologies to protect against phishing, spam, and malware threats
- Configure and manage email security gateways, filters, and encryption mechanisms
- Design and implement IAM solutions and frameworks to manage user identities, access permissions, and authentication mechanisms
- Define and enforce access policies, roles, and privileges across the organization
- Implement single sign-on (SSO) solutions and multi-factor authentication (MFA) mechanisms
- Hands-on experience with Azure Active Directory (Entra ID) or Okta for identity management
- Familiarity with Privileged Access Management (PAM) solutions
- Experience implementing RBAC and ABAC models in enterprise environments
- Knowledge of identity lifecycle management
- Manage and maintain Windows server environments, including server installation, configuration, and administration
- Implement and optimize Active Directory services, Group Policies, and domain services
- Monitor server performance, troubleshoot issues, and ensure system security and stability
- Administer Windows-based systems, including installation, configuration, and management
- Implement security measures and perform regular system updates and patches
- Deploy, configure, and manage VMware virtualization technologies, including vSphere, vCenter, and ESXi
- Monitor virtual infrastructure performance, capacity planning, and resource optimization
- Implement high availability and disaster recovery solutions using VMware technologies
- Design, implement, and manage backup and disaster recovery solutions for critical data and systems
- Monitor storage systems, capacity planning, and performance tuning to ensure optimal performance
- Implement data encryption, compression, and deduplication techniques to maximize storage efficiency
Requirements:
- Hands-on with AWS and/or Azure (cloud infra, IaC with Terraform/CloudFormation)
- Cybersecurity experience: SIEM (Sentinel/Splunk), EDR/XDR, DLP, vulnerability scanning, pen testing
- IAM: Azure AD (Entra ID) or Okta, SSO, MFA, PAM, RBAC/ABAC
- Windows Server, Active Directory, Group Policy management
- VMware: vSphere, vCenter, ESXi