Manager of Cloud Security

col-narrow-left
Job ID:
2484749
Location:
Charlotte, NC
Category:
Information Technology, Telecommunications, Array
Salary:
$145,000.00 per year
Zip Code:
28201
Employment Type:
Full time
Posted:
05.17.2018
col-narrow-right
col-wide

Job Description:

Prestigious Fortune 500 Company is currently seeking a Manager of Cloud Security. Candidate will lead a team of engineers in designing and building Cloud Security solutions that will protect against ongoing and potential security threats. Candidate will lead the implementation and design for Cloud usage throughout the enterprise, enforce compliance with Security policies, controls and function as a technical security SME on various projects.

Responsibilities:

Drive Cloud Security Engineering for our Enterprise IT and Business IT teams in both IaaS/PaaS and SaaS implementations.

Serve as the primary interface to governance, compliance, and risk management teams to ensure the system consistently meets the requirements for certification and accreditation.

Participate in designing and managing IT Security strategy including both infrastructure and applications.

Lead engineering efforts associated with security and compliance based products and services in the cloud.

Assist with products involving cloud, operating systems, applications, and database and security issues and requirements.

Be an active member of Design & Build of cloud products and services, steering cloud configurations and services towards industry-leading security with your domain expertise.

Actively assess existing cloud implementations, identifying security issues and prioritizing fixes.

Lead a team in engineer and implementing new Cloud Security tools to feed our DevOps/SecOps processes to ensure the solvency of cloud compute resources.

Provide daily, ongoing security oversight of SecOps operations, to include the security impact of proposed modifications, additions, and technology implementation/refresh operations.

Understand/Perform system security vulnerabilities and associated threats, and assess the overall security risks to the system using approved software tools and ability to automate.

Provide mitigation recommendations to reduce identified security risks

Work directly with internal IT staff and customer to establish and enforce IT security best practices, protection objectives, process improvements and effective IT security controls

Thoroughly understand software installations, systems monitoring and troubleshooting, account management, and overall efforts to minimize system downtime

Thorough understanding of DevOps ideologies and ability to drive and communicate change supporting DevOps/SecOps methodology within the organization

Provide regular updates to leadership on priorities, risks, and status of various cloud efforts, products, and services.

Qualifications:

Bachelor's degree or equivalent in Computer Science, Information Systems Management, Information Technology or other related discipline with 10 + or more additional years related professional experience.

10 + years' experience as a Security Engineer supporting software architecture development environments

Experience with Git, Jenkins, Chef, Ansible and/or Puppet is a must.

Experience with common Scripting languages (Python, Ruby) is a must

Strong understanding and passion for CI/CD methodologies and supporting tooling just as Jenkins.

Strong experience with cloud security strategy, cloud provider ecosystems (Amazon AWS/Microsoft Azure) & migrating Enterprise from traditional data center Infrastructure, Application and Data designs to hybrid or fully-cloud enabled practices.

Familiar with DevOps and Agile methodology

Strong experience with cloud security strategy, cloud provider ecosystems (Amazon AWS/Microsoft Azure) & migrating Enterprise from traditional data center Infrastructure, Application and Data designs to hybrid or fully-cloud enabled practices.

Knowledge of cloud networking architecture, cloud operations, security, automation and orchestration

Possess clear understanding of security protocols and standards and have experience with software and security architectures.

Demonstrate an ability to bridge technology knowledge gaps between IT staff and corporate staff such as Legal, Compliance and Audit organizations.

Understand how to design and implement security tests in accordance with stated criteria

Experience with Linux/UNIX Windows Servers, MS SQL, Oracle MySQL, MongoDB

Experience understanding protocols, such as, SSL/TLS, CIFS, HTTP/S, DHCP, SMTP, LDAP/S, NFS, SNMP and DNS

Experience in networking concepts and services, such as, VPNs, IPsec, PKI and TCP/IP

Experience with SDN, and SDI tooling such as Teraform and CloudFormation.

Familiar with high-availability (HA) and failover implementations for network infrastructure and server systems

Company Info
Request Technology - Craig Johnson